Versions Compared

Old Version 16

changes.mady.by.user Fredrik Domeij

Saved on

compared with

New Version 17

changes.mady.by.user Unknown User (anders@hig.se)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The F-TICKS format implemented by this log appender is a generalization of the eduroam F-TICKS format:

Code Block

'F-TICKS/' federationIdentifier '/' version *('#' attribute '=' value ) '#'

...

Add an appender definition to logging.xml close to where the other appenders are (before the loggers).

Code Block
titleLinux

<appender name="IDP_FTICKS" class="net.nordu.logback.FTicksAppender">
   <syslogHost>syslog.swamid.se</syslogHost>
   <federationIdentifier>SWAMID</federationIdentifier>
   <version>2.0</version>
   <keyFile>/opt/shibboleth-idp/conf/fticks-key.txt</keyFile>
   <blacklist>^monitor$$</blacklist> <!-- no logging for user monitor -->
</appender>
Code Block
titleWindows

<appender name="IDP_FTICKS" class="net.nordu.logback.FTicksAppender">
   <syslogHost>syslog.swamid.se</syslogHost>
   <federationIdentifier>SWAMID</federationIdentifier>
   <version>2.0</version>
   <keyFile>C:/Program Files (x86)/Internet2/Shib2IdP/conf/fticks-key.txt</keyFile>
   <blacklist>^monitor$$</blacklist> <!-- no logging for user monitor -->
</appender>

Change the keyFile to point to where you want to store your random key for protecting local principal names.

...

Add the appender to the Shibboleth-Audit logger by changing

Code Block

<logger name="Shibboleth-Audit" level="ALL">
   <appender-ref ref="IDP_AUDIT" />
</logger>

to

Code Block

<logger name="Shibboleth-Audit" level="ALL">
   <appender-ref ref="IDP_AUDIT" />
   <appender-ref ref="IDP_FTICKS" />
</logger>

...

To build fticks, you need git, maven and Java JDK.

Code Block
titleLinux

# git clone git://github.com/leifj/ndn-shib-fticks.git
# cd ndn-shib-fticks
# mvn
... build finishes ...
Code Block
titleWindows (Git Bash)

$ cd Desktop
$ git clone git://github.com/leifj/ndn-shib-fticks.git
$ cd ndn-shib-fticks
$ export JAVA_HOME="/c/Program Files (x86)/Java/jdk1.7.0_25"
$ /c/apache-maven-3.1.0/bin/mvn
... build finishes ...

...

Copy the jar-file to

Code Block
titleLinux

shibboleth-identity-provider-2.2.x/lib
Code Block
titleWindows

C:/Program Files (x86)/Internet2/Shib2IdPInstall/lib

...