[Koha-bugs] [Bug 17776] Shibboleth Authentication is broken in plack

bugzilla-daemon at bugs.koha-community.org bugzilla-daemon at bugs.koha-community.org
Fri Sep 28 15:13:57 CEST 2018


https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=17776

Martin Renvoize <martin.renvoize at ptfs-europe.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
  Text to go in the|This enhancement adds       |This enhancement adds
      release notes|support for using           |support for using
                   |Shibboleth in a Plack       |Shibboleth in a Plack
                   |environment. Caution        |environment. Caution
                   |should, however, be taken   |should, however, be taken
                   |before enabling it as there |before enabling it as there
                   |are security implications   |are security implications
                   |to be aware of regarding    |to be aware of regarding
                   |header spoofing attacks     |header spoofing attacks
                   |that can be mitigated with  |that can be mitigated with
                   |additional care whilst      |additional care whilst
                   |configuring the native      |configuring the native
                   |service provider and        |service provider and
                   |Apache: Please see the POD  |Apache: Please see
                   |of Auth_with_shib.pm for    |https://wiki.shibboleth.net
                   |details.                    |/confluence/display/SHIB2/N
                   |                            |ativeSPSpoofChecking for
                   |                            |further details.

-- 
You are receiving this mail because:
You are watching all bug changes.


More information about the Koha-bugs mailing list