Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Shibboleth IDP client should have its own OpenID client creds #447
"oxTrust Admin GUI" is also the client used for Shibboleth IDP authentication. That's why it has
It would be better if Shibboleth had it's own client creds, and didn't share them with oxTrust. This would give us more flexibility to write customize SAML behavior by writing a consent gathering interception script.
Also, it seems from a security perspective that we'd want to be able to differentiate traffic from oxTrust and the IDP.