AD FS uses a different claim format than Shibboleth (Koha). It should be possible to make this work, but you're editing weird xml snippets in the AD FS claims config to make it happen. It's painful. Here, rather than going through that we have a report out of our student information system to create a csv file librarians can use to upload patron information into Koha periodically to keep that info up to date, rather than trying to pass the data via AD FS. Then the only claim we needed to worry about was the Name ID. *Joel Coehoorn* Director of Information Technology *York University* Office: 402-363-5603 | jcoehoorn@york.edu | york.edu On Wed, Mar 15, 2023 at 4:30 PM Katrin Fischer <katrin.fischer.83@web.de> wrote:
Hi Agostino,
glad you could work it out. If you want to help with the manual, this might be a good starting point:
https://wiki.koha-community.org/wiki/Editing_the_Koha_Manual
Hope this helps,
Katrin
Hey Karin,
I was able to get it setup with ADFS eventually (through trial and error) but was having issues with the scopes and matching of claims to Koha.
I have been able to login to Koha OPAC with ADFS as the identity
On 13.03.23 16:02, Agostino M. Nigro wrote: provider, but upon login no claims are transferred to Koha resulting in no names or information being passed to Koha.
I would love to help with documentation of the Koha Identity Providers
System since it does seem no other documentation has been completed for it.
Thanks, --
Agostino “Austin” Nigro
agostino.nigro@nigroweb.com<mailto:agostino.nigro@nigroweb.com>
This message is intended only for the personal and confidential use of
the designated recipient(s) named above. The information contained in this e-mail transmission (including all attached files) is privileged and confidential and intended only for the use of the individual(s) and/or entity(ies) named above. If you are not the intended recipient, you are hereby notified that any unauthorized disclosure, copying, distribution or taking of any action in reliance on the contents of the e-mail materials is strictly prohibited. No confidentiality or privilege is waived or lost by any transmission errors. If you are not the intended recipient and have received this e-mail transmission in error, do not copy it, re-transmit it, use it or disclose its contents, but instead should notify myself, Agostino Nigro at Agostino.Nigro@nigroweb.com immediately and please delete it and all copies of it from your system. Thank you
Date: Sun, 12 Mar 2023 15:22:25 +0100 From: Katrin Fischer <katrin.fischer.83@web.de> To: koha@lists.katipo.co.nz Subject: Re: [Koha] Koha Identity Provider Setup Message-ID: <019565f6-d60a-31e7-5243-226e8e26ca4b@web.de> Content-Type: text/plain; charset=UTF-8; format=flowed
Hi Agostino,
if you share the errors, maybe people on the list can help you resolve them. It looks like the Identity providers haven't bee fully documented yet, but questions will also help to see what needs to go into documentation.
Katrin
On 08.03.23 23:54, Agostino M. Nigro wrote:
Hello,
I am looking to get more information on how to setup Koha OAuth2
--
Agostino “Austin” Nigro
agostino.nigro@nigroweb.com<mailto:agostino.nigro@nigroweb.com>
This message is intended only for the personal and confidential use of
Identity Providers - I have tried to figure it out myself and through trial and error with ADFS as well as with Azure Active Directory, but keep running into errors. Any assistance would be greatly appreciated! the designated recipient(s) named above. The information contained in this e-mail transmission (including all attached files) is privileged and confidential and intended only for the use of the individual(s) and/or entity(ies) named above. If you are not the intended recipient, you are hereby notified that any unauthorized disclosure, copying, distribution or taking of any action in reliance on the contents of the e-mail materials is strictly prohibited. No confidentiality or privilege is waived or lost by any transmission errors. If you are not the intended recipient and have received this e-mail transmission in error, do not copy it, re-transmit it, use it or disclose its contents, but instead should notify myself, Agostino Nigro at Agostino.Nigro@nigroweb.com immediately and please delete it and all copies of it from your system. Thank you
_______________________________________________
Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz Unsubscribe: https://lists.katipo.co.nz/mailman/listinfo/koha
_______________________________________________
Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz Unsubscribe: https://lists.katipo.co.nz/mailman/listinfo/koha
Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz Unsubscribe: https://lists.katipo.co.nz/mailman/listinfo/koha