Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OIDC Metadata refresh not working as expected #47

Open
fuero opened this issue Dec 13, 2020 · 0 comments
Open

OIDC Metadata refresh not working as expected #47

fuero opened this issue Dec 13, 2020 · 0 comments

Comments

@fuero
Copy link

fuero commented Dec 13, 2020

I've noticed that calling

/opt/shibboleth-idp/bin/reload-service.sh -id shibboleth.MetadataResolverService

doesn't reload the OIDC metadata I've added.

So I tried adding the OIDC metadata provides to the service config like this:

    <util:list id="shibboleth.MetadataResolverResources">
        <value>%{idp.home}/conf/metadata-providers.xml</value>
        <value>%{idp.home}/conf/oidc-metadata-providers.xml</value> <-------------
        <value>%{idp.home}/system/conf/metadata-providers-system.xml</value>
    </util:list>

While the metadata are verified and loaded, they aren't used by the IDP.
I'm guessing it's because the OIDC stuff doesn't tie in the inner workings of the service called here, but being able to reload the metadata without restarting the whole application would be nice.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@fuero