...
The F-TICKS format implemented by this log appender is a generalization of the eduroam F-TICKS format:
Code Block |
---|
'F-TICKS/' federationIdentifier '/' version *('#' attribute '=' value ) '#'
|
...
Add an appender definition to logging.xml close to where the other appenders are (before the loggers).
Code Block |
---|
|
<appender name="IDP_FTICKS" class="net.nordu.logback.FTicksAppender">
<syslogHost>syslog.swamid.se</syslogHost>
<federationIdentifier>SWAMID</federationIdentifier>
<version>2.0</version>
<keyFile>/opt/shibboleth-idp/conf/fticks-key.txt</keyFile>
<blacklist>^monitor$$</blacklist> <!-- no logging for user monitor -->
</appender>
|
Code Block |
---|
|
<appender name="IDP_FTICKS" class="net.nordu.logback.FTicksAppender">
<syslogHost>syslog.swamid.se</syslogHost>
<federationIdentifier>SWAMID</federationIdentifier>
<version>2.0</version>
<keyFile>C:/Program Files (x86)/Internet2/Shib2IdP/conf/fticks-key.txt</keyFile>
<blacklist>^monitor$$</blacklist> <!-- no logging for user monitor -->
</appender>
|
Change the keyFile to point to where you want to store your random key for protecting local principal names.
...
Add the appender to the Shibboleth-Audit logger by changing
Code Block |
---|
<logger name="Shibboleth-Audit" level="ALL">
<appender-ref ref="IDP_AUDIT" />
</logger>
|
to
Code Block |
---|
<logger name="Shibboleth-Audit" level="ALL">
<appender-ref ref="IDP_AUDIT" />
<appender-ref ref="IDP_FTICKS" />
</logger>
|
...
To build fticks, you need git, maven and Java JDK.
Code Block |
---|
|
# git clone git://github.com/leifj/ndn-shib-fticks.git
# cd ndn-shib-fticks
# mvn
... build finishes ...
|
Code Block |
---|
|
$ cd Desktop
$ git clone git://github.com/leifj/ndn-shib-fticks.git
$ cd ndn-shib-fticks
$ export JAVA_HOME="/c/Program Files (x86)/Java/jdk1.7.0_25"
$ /c/apache-maven-3.1.0/bin/mvn
... build finishes ...
|
...
Copy the jar-file to
Code Block |
---|
|
shibboleth-identity-provider-2.2.x/lib
|
Code Block |
---|
|
C:/Program Files (x86)/Internet2/Shib2IdPInstall/lib
|
...