在Ubuntu 14.04LTS上的apache 2上安装shibboleth。实际的shib安装似乎没问题,因此请将站点.conf文件配置为使用shibboleth。
当我访问https://lib.msu.edu/secure时,它由shibboleth处理(在此阶段有适当的配置异常),但是当我访问https://lib.msu.edu/Shibboleth.sso/Metadata(或Shibboleth.sso中的任何其他内容)时,它会被重定向到php / drupal从未被shibboleth系统看到并且收到404错误。
我最好的猜测是apache没有将请求传递给shibboleth,但我不确定原因,也不知道如何调试这种情况。这一切都在我们的测试服务器上工作正常,我们找不到任何解释原因的配置差异。
apache .conf文件如下:
<VirtualHost *:443>
ServerAdmin webmaster@localhost
ServerName lib.msu.edu
ServerAlias library.msu.edu
ServerAlias [...]
DocumentRoot [MyValidRoot]
<Directory [MyValidRoot]>
Options Indexes FollowSymLinks MultiViews
AllowOverride All
Order allow,deny
allow from all
</Directory>
<Location /Shibboleth.sso>
SetHandler shib
</Location>
<Location /secure>
AuthType shibboleth
ShibRequireSession On
Require valid-user
</Location>
SSLEngine on
SSLCertificateFile [validcertpath]
SSLCertificateKeyFile [validkeypath]
SSLCertificateChainFile [validIntermediateCertpath]
SSLProtocol all -SSLv2 -SSLv3 -TLSv1
SSLCipherSuite [cipherString]
SSLHonorCipherOrder on
SSLCompression off
SSLUseStapling on
SSLStaplingResponderTimeout 5
SSLStaplingReturnResponderErrors off
Redirect /cgi-bin/ [CGIserver]/cgi-bin/
# Redirect all requests to lib.msu.edu (except wwwm, for testing mirror)
<If "! req('Host') in { 'lib.msu.edu', 'wwwm.lib.msu.edu' }">
Redirect / https://lib.msu.edu/
</If>
RewriteEngine On
# force trailing slash
RewriteCond %{REQUEST_METHOD} !=post [NC]
RewriteRule ^(.*(?:^|/)[^/\.]+)$ $1/ [L,R=301]
# redirect .js and .css 404s to tomcat
RewriteCond %{REQUEST_URI} \.(css|js)$
RewriteCond /var/www/mainweb%{REQUEST_URI} !-f
RewriteRule ^/(.*)$ https://tomcat.lib.msu.edu/$1 [L]
</VirtualHost>
感谢您提供任何帮助!我们已经花了好几个小时在这个shibboleth安装上敲头。