Shibbolith is a web authentication system similar in some ways to Pubcookie, though having more features and additional complexity.
On August 1, 2013, CMU Computing Services is scheduled to replace its current Pubcookie-based web authentication service with one based on Shibbolith. Protected pages served by www.cs.cmu.edu will start using Shibbolith for authentication on July 22, 2013.
If you manage protected content served by www.cs.cmu.edu: You do not have to do anything. SCS Facilities will be making changes to the www.cs.cmu.edu servers that will allow Pubcookie directives in existing .htaccess files to continue to work.
If you are a administrator for a SCS web server: If that server currently uses the Computing Services Pubcookie server to protect content, you will need to switch to another authentication service.
Note: The SCS WebISO service (webiso.cs.cmu.edu) is not affected by these changes.
- Verifying the Shibboleth login pages
- Shibboleth uses different URLs and has a different appearance than Pubcookie. This page has screenshots and information about the URLs to help you verify the authenticity of the Shibboleth login pages.
- Using Shibboleth to protect content
- An introduction to using Shibboleth directives in .htaccess files and Apache configuration files to protect content.
- CMU Web authentication services
- Single sign-on Web authentication services available to SCS hosts, and an overview of their features.
- CMU Computing Services Shibboleth documentation (off-site link).
- Some of this documention may not apply to SCS hosts
- Shibboleth wiki (Off-site link)
- Main Shibboleth documentation site. Has some advanced usage information.