Discussion:
StorageService and IdP3
Szerb, Tamas
2014-09-16 17:25:11 UTC
Permalink
Hello,

I was looking around the StorageService, and my first question came, why we
need to deal with it when it would be possible to put all data into
HttpSession which can be easily persisted and clustered with servlet
engines?

The second one that I see that IdP 3.0.0alpha2 has a JPA implmenetation
from OpenSAML; is there any experience with it? Where is the source of that
IdP? The svn repo of idp2 seems to be oldish.

Thanks,

Tamas


VWOL
Tamas SZERB <toma-tv9/***@public.gmane.org>
Peter Schober
2014-09-16 17:29:21 UTC
Permalink
Post by Szerb, Tamas
The second one that I see that IdP 3.0.0alpha2 has a JPA implmenetation
from OpenSAML; is there any experience with it? Where is the source of that
IdP? The svn repo of idp2 seems to be oldish.
Linked from the wiki's start page:
https://wiki.shibboleth.net/confluence/display/SHIB2/SourceAccess
You're probably looking at the trunk instead of the documented branch,
where development happens. Besides the fact that most development in
the last year was on v3, not on v2.
-peter
--
To unsubscribe from this list send an email to users-unsubscribe-***@public.gmane.org
Cantor, Scott
2014-09-16 18:15:00 UTC
Permalink
Post by Szerb, Tamas
I was looking around the StorageService, and my first question came, why
we need to deal with it when it would be possible to put all data into
HttpSession which can be easily persisted and clustered with servlet
engines?
This is a dev list question, but the answer is that it's not "easily"
persisted. None of the state in the IdP is Java Serializable. That would
require a complete rewrite of OpenSAML along with a change to the most
basic design constraint we started with.

Secondly, requiring a container session would preclude using client side
storage where applicable, not to mention that it would make alternative
storage options non-portable and container-specific.

In short, it's a bad idea.
Post by Szerb, Tamas
The second one that I see that IdP 3.0.0alpha2 has a JPA implmenetation
from OpenSAML; is there any experience with it?
Just unit tests. The amount of outside testing of V3 has been minimal, and
the eventual release schedule and the likely bug count will reflect that.
Post by Szerb, Tamas
Where is the source of that IdP?
/utilities/java-support
/utilities/spring-extensions
/java-opensaml
/java-identity-provider

All trunks.

Please use dev for any V3 related issues.

-- Scott
--
To unsubscribe from this list send an email to users-unsubscribe-***@public.gmane.org
Loading...