Minor changes

e1a300d3 · Sonia Zorba · 933bc566 · e1a300d3 · e1a300d3
Commit e1a300d3 authored 4 years ago by Sonia Zorba
--- a/classes/login/ShibbolethLogin.php
+++ b/classes/login/ShibbolethLogin.php
@@ -17,8 +17,8 @@ class ShibbolethLogin extends LoginHandler {
            // Search if the user is already registered into RAP using the eppn.
            // The persistent id should be a more appropriate identifier, however at IA2
-            // we need to import all INAF user into RAP, even if they will never register,
+            // we need to import all INAF users into RAP, even if they will never register,
-            // and in that case we know only their eppn.
+            // and in that case we only know their eppn.
            $identity = new Identity(Identity::EDU_GAIN);
            $identity->typedId = $eppn;
            $identity->email = $_SERVER['mail'];

--- a/config-example.yaml
+++ b/config-example.yaml
@@ -31,7 +31,7 @@ authenticationMethods:
    callback: "/auth/social/linkedin/token"
  X509:
  LocalIdP:
-    url: "https://sso.ia2.inaf.it/Shibboleth.sso/Login?entityID=https://sso.ia2.inaf.it/idp/shibboleth&target=https://sso.ia2.inaf.it/rap-ia2-v2/auth/eduGAIN"
+    url: "https://sso.ia2.inaf.it/Shibboleth.sso/Login?entityID=https://sso.ia2.inaf.it/idp/shibboleth&target=https://sso.ia2.inaf.it/rap-ia2/auth/eduGAIN"
    logo: "img/ia2-logo-60x60.png"
    logoAlt: "IA2 logo"
    description: "Use the IA2 Logo to Login if you have an account provided by IA2 or self registered"
@@ -39,9 +39,11 @@ authenticationMethods:
    id: "XXXXXX"
    callback: "/auth/orcid"
    secret: "XXXXXX"
+  # enable simulated login page for testing
+  test: false
 gms:
  id: "gms"
-  joinEndpoint: "https://sso.ia2.inaf.it/gms/ws/jwt/join"
+  joinEndpoint: "https://sso.ia2.inaf.it/gms"
 tokenIssuer:
  services:
  - id: fileserver