Shibboleth IdP SLO part 1 (preparation)

-

Prerequisite

Jdk with version > 1.6.0

In debian older than 6, we must download the jdk manually (cannot use apt-get install openjdk-6-jdk)
download and install jdk from sun website in to /usr/lib/jvm/ 
curl -L -O http://download.oracle.com/otn-pub/java/jdk/6u30-b12/jdk-6u30-linux-i586.bin
chmod +x jdk-6u30-linux-i586.bin
./jdk-6u30-linux-i586.bin

Change default jvm

To change the default jvm, use this command:
idp:~# update-alternatives --config java

Es gibt 2 Alternativen, die »java« bereitstellen.

Auswahl      Alternative
-----------------------------------------------
*         1    /usr/lib/jvm/java-1.5.0-sun/jre/bin/java
 +        2    /usr/lib/jvm/java-6-openjdk/jre/bin/java

Drücken Sie die Eingabetaste, um die Vorgabe[*] beizubehalten,
oder geben Sie die Auswahlnummer ein: 2
Verwende »/usr/lib/jvm/java-6-openjdk/jre/bin/java«, um »java« bereitzustellen.

Change default keytool

To change the default java keytool, use this command:
idp:~# update-alternatives --config keytool

Es gibt 2 Alternativen, die »keytool« bereitstellen.

Auswahl      Alternative
-----------------------------------------------
*         1    /usr/lib/jvm/java-1.5.0-sun/jre/bin/keytool
 +        2    /usr/lib/jvm/java-6-openjdk/jre/bin/keytool

Drücken Sie die Eingabetaste, um die Vorgabe[*] beizubehalten,
oder geben Sie die Auswahlnummer ein: 2
Verwende »/usr/lib/jvm/java-6-openjdk/jre/bin/keytool«, um »keytool« bereitzustellen.

Edit profile

Add the following into file /etc/profile:
export JAVA_HOME=/usr/lib/jvm/java-6-openjdk         # in debian 5 export JAVA_HOME=/usr/lib/jvm/jdk1.6.0_30
export JRE_HOME=/usr/lib/jvm/java-6-openjdk  # in debian 5 export JRE_HOME=/usr/lib/jvm/jdk1.6.0_30
export PATH=$JAVA_HOME/bin:$PATH
export CATALINA_HOME=/usr/local/src/tomcat6
export CATALINA_BASE=/usr/local/src/tomcat6
export IDP_HOME=/opt/shibboleth-idpSLO
export JAVA_ENDORSED_DIRS=/usr/local/src/tomcat6/endorsed

Install tomcat 6

To install tomcat6, do the following step:
apt-get install tomcat6
or
curl -L -O http://apache.mirror.clusters.cc/tomcat/tomcat-6/v6.0.35/bin/apache-tomcat-6.0.35.tar.gz
tar zxvf apache-tomcat-6.0.35.tar.gz
mv apache-tomcat-6.0.35 /usr/local/src/tomcat6

Configure tomcat startup script

  • Edit the CATALINA_HOME/bin/catalina.sh file and add the JAVA_OPTS variable as:
JAVA_OPTS="-Djava.awt.headless=true -Xmx512M -XX:MaxPermSize=128M -Dcom.sun.security.enableCRLDP=true"
  • Edit the CATALINA_HOME/conf/server.xml and change autoDeploy to false:
<Host  appBase="webapps" unpackWARs="true" autoDeploy="false" xmlValidation="false" xmlNamespaceAware="false">

Install Apache

Actually, Shibboleth IdP can be installed and running only using tomcat server, but in this example, we use tomcat and apache.

Comments

Post a Comment

Popular posts from this blog

VGA out for cubieboard

-
Image
Because my TV is used mainly for watching. I need an alternative display output for my cubieboard. The easiest way is using CVBS pin, and attach it to RCA jack to connect to video input. But I don't have another display with video in, so I need to built VGA out for the cubieboard. Component needed : 3 x 75 ohm low-tolerance resistors. 1 x 74ACT08D quad AND gate. 2 x bat54s SCHOTTKY diodes (I can't find it in my local store, so I change it with 4 x bat85s or any SCHOTTKY diodes). 1 x 100 nF low-tolerance capasitor. 1 x VGA DB15 connector.
Read more

Video and Audio Streaming from A20SOM-EVB using crtmpserver

-
To stream video and audio from A20SOM-EVB, ffmpeg and crtmpserver are used. FFmpeg is used to encode the video and audio from A20SOM-EVB csi-camera and mic-in and then feed the stream to crtmpserver. Crtmpserver act as streaming server to provide rtmp stream for flash player, or rtsp stream for video player such as videolan. If the csi camera is not yet functioning on the default debian distro, please follow my previous article how to enable csi-camera on A20SOM-EVB .
Read more

enable csi camera on A20-SOM EVB

-
The csi camera on the debian image with kernel 3.4.79+ from olimex doesn't work. To make it works, we need to change the configuration in script.bin and /etc/modules. We must convert script.bin to script.fex using bin2fex tools to change the configuration. olimex@a20-Lime2-SOM:~$ bin2fex script.bin script.fex We will have script.fex file after that command. Open the file and change the value as below: ... [csi0_para] csi_used = 1 ... Convert back script.fex to script.bin. olimex@a20-Lime2-SOM:~$ fex2bin script.fex script.bin Add the following value in the /etc/modules file: gt2005 sun4i_csi0 i2c_addr=0x78 ccm="gt2005" After that, we can reboot the board. Wait a couple second, and voila...the csi camera will now work. But there is still error message from the kernel log as follow: [CSI_ERR]input index invalid! Nevertheless, the csi camera works fine, if someone know how to solve this error, please let me know.
Read more