Nate, Thanks for quick response.

To elaborate more on the question, I am able to login into my application
application using shibboleth authentication. In other words I have
successfully setup SP for application and once I login using my credentials
I am successfully getting response from IDP and able to work on the
application. However the out of box webservices which invokes some of the
operations using batch file are no more working which were earlier working
fine when the application was using simple database authentication. So my
question is do we need to do some extra setting for webservices so that they
can be called from outside using batch files and perform shibboleth
authentication to execute their operations.

Hope this time I am clear with my question.



--
View this message in context: http://shibboleth.1660669.n2.nabble.com/Web-Service-shibboleth-authentication-is-not-working-tp7606387p7606389.html
Sent from the Shibboleth - Users mailing list archive at Nabble.com.

Robin

This sounds similar to the problem we had with the moodle mobile app - it uses web services on the site, but if a site had shibboleth authentication then it stopped it working.

The solution devised was twofold:
1) a plugin for moodle which was able to (publically, no login required) tell the app whether an external SSO system like shibboleth was in place
2) the app had to be adapted to call this web service, and redirect the user (via a web browser embedded in the app) to the shibboleth login page - once a shibboleth session was setup ok the browser picked this up and sent the data needed for the session back to the app

I've not had to try implementing ECP, but could that be connected to a potential solution? My understanding is that it's meant for when you have, say Office 365 email and a mail client e.g. Mail on iPhone tries connecting to this via IMAP (so prompts for authentication) but I'm not sure if this works for web services.

HTH

_________________________________________________
Dave Perry
eLearning Technologist, Hull College Group

Room L34 - Queens Gardens Library
Wilberforce Drive, Queen's Gardens, Hull, HU1 3DG
Extension 2230 / Direct Dial 01482 381930

* Need a fast reply? Try elearning-NOSDTyrR4+***@public.gmane.org *

-----Original Message-----
From: users-bounces-***@public.gmane.org [mailto:users-bounces-***@public.gmane.org] On Behalf Of Nate Klingenstein
Sent: 03 September 2014 10:45
To: Shib Users
Subject: Re: Web Service shibboleth authentication is not working.

Robin,

I'm not able to interpret your question well enough to give you a helpful response. The best thing I can do is refer you to here:

https://spaces.internet2.edu/display/NetPlusIDG/NET+Plus+Identity+Guidance+for+Services

The picture will show you how things typically work, and there's some text. Here is some background about using SAML with non-browser user agents.

https://spaces.internet2.edu/display/NetPlusIDG/NET+Plus+Identity+Guidance+for+Services#NETPlusIdentityGuidanceforServices-6.NonBrowserAccess

Hope this helps,
Nate.
--
To unsubscribe from this list send an email to users-unsubscribe-***@public.gmane.org

**********************************************************************
This message is sent in confidence for the addressee
only. It may contain confidential or sensitive
information. The contents are not to be disclosed
to anyone other than the addressee. Unauthorised
recipients are requested to preserve this
confidentiality and to advise us of any errors in
transmission. Any views expressed in this message
are solely the views of the individual and do not
represent the views of the College. Nothing in this
message should be construed as creating a contract.

Hull College owns the email infrastructure, including the contents.

Hull College is committed to sustainability, please reflect before printing this email.
**********************************************************************

TEXT