Changes between Version 29 and Version 30 of idpiam2018

Timestamp:

Sep 13, 2018, 8:34:17 AM (6 years ago)

Author:

admin

Comment:

--

idpiam2018

@@ -186 +186 @@
    Create the file `/etc/apache2/sites-available/idp-ssl.conf` as follows:
 
-{{{
+{{{#!apache
    <IfModule mod_ssl.c>
       SSLStaplingCache        shmcb:/var/run/ocsp(128000)
@@ -236 +236 @@
 }}}
    
-{{{
+{{{#!apache
    <VirtualHost *:80>
         ServerName "idp.instXY.ac.lk"
@@ -263 +263 @@
    vim /etc/apache2/site-available/idp.conf
 }}}
-{{{
+{{{#!apache
    <VirtualHost *:80>
      ServerName idp.instXY.ac.lk
@@ -355 +355 @@
      Comment out the Connector 8080 (HTTP):
     
-{{{
+{{{#!xml
      <!-- A "Connector" represents an endpoint by which requests are received
           and responses are returned. Documentation at :
@@ -372 +372 @@
 
      Enable the Connector 8009 (AJP):
-{{{
+{{{#!xml
      <!-- Define an AJP 1.3 Connector on port 8009 -->
      <Connector port="8009" protocol="AJP/1.3" redirectPort="443" address="127.0.0.1" enableLookups="false" tomcatAuthentication="false"/>
@@ -389 +389 @@
    sudo vim /etc/tomcat8/Catalina/localhost/idp.xml
 }}}
-{{{
+{{{#!xml
 <Context docBase="/opt/shibboleth-idp/war/idp.war"
          privileged="true"
@@ -400 +400 @@
    vim /etc/apache2/sites-available/idp-proxy.conf
 }}}  
-{{{
+{{{#!apache
      <IfModule mod_proxy.c>
        ProxyPreserveHost On
@@ -584 +584 @@
 }}}
 * log in to your MySQL Server with `mysql -u root -p` and continue. Make sure to replace `##ROOT-DB-PASSWORD##`, `##USERNAME##`, `##PASSWORD##` with your own
-{{{
+{{{#!sql
     SET NAMES 'utf8';
 
@@ -654 +654 @@
    vim /opt/shibboleth-idp/conf/saml-nameid.xml
 }}}     
-Remove the comment from the line containing:
-* 
-{{{
+   Remove the comment from the line containing: 
+{{{#!xml
      <ref bean="shibboleth.SAML2PersistentGenerator" />
 }}}
@@ -663 +662 @@
    vim /opt/shibboleth-idp/conf/c14n/subject-c14n.xml
 }}}     
-Remove the comment to the bean called "'''c14n/SAML2Persistent'''".       
-{{{
+   Remove the comment to the bean called "'''c14n/SAML2Persistent'''".       
+{{{#!xml
      <ref bean="c14n/SAML2Persistent" />
 }}}       
 27. Enable '''JPAStorageService''' for the '''!StorageService''' of the user consent:
-* `vim /opt/shibboleth-idp/conf/global.xml` and add this piece of code to the tail before the ending \</beans\>:
-
-{{{
+* `vim /opt/shibboleth-idp/conf/global.xml` and add this piece of code to the tail before the ending </beans>:
+
+{{{#!xml
      <!-- A DataSource bean suitable for use in the idp.persistentId.dataSource property. -->
      <bean id="MyDataSource" class="org.apache.commons.dbcp.BasicDataSource"
@@ -705 +704 @@
 
 * Modify the IdP configuration file:
-* 
+   * 
 {{{
    vim /opt/shibboleth-idp/conf/idp.properties
@@ -761 +760 @@
 (If you decide to use the Solution 2, you have to remove (or comment out) the following code from your Attribute Resolver file:
       
-{{{
+{{{#!xml
        </dc:FilterTemplate>
        <!--
@@ -781 +780 @@
    vim /opt/shibboleth-idp/conf/logback.xml
 }}}
-{{{
+{{{#!xml
      <!-- Logs LDAP related messages -->
      <logger name="org.ldaptive" level="${idp.loglevel.ldap:-WARN}"/>
@@ -794 +793 @@
 }}}
 * Modify `services.xml` file: `vim /opt/shibboleth-idp/conf/services.xml`
-{{{
+{{{#!xml
       <value>%{idp.home}/conf/attribute-resolver.xml</value>
 }}}
 must become:
 
-{{{
+{{{#!xml
       <value>%{idp.home}/conf/attribute-resolver-v1-LEARN.xml</value>
 }}}
@@ -810 +809 @@
    vim /opt/shibboleth-idp/metadata/metadata.xml
 }}}
-{{{
+{{{#!xml
       <IDPSSODescriptor> SECTION:
         – From the list of "protocolSupportEnumeration" remove:
@@ -876 +875 @@
    vim metadata-providers.xml
 }}}
-{{{
+{{{#!xml
       <MetadataProvider
             id="HTTPMD-LEARN-Federation"
@@ -932 +931 @@
    vim /opt/shibboleth-idp/conf/services.xml
 }}}
-{{{
+{{{#!xml
       <bean id="Default-Filter" class="net.shibboleth.ext.spring.resource.FileBackedHTTPResource"
             c:client-ref="shibboleth.FileCachingHttpClient"