<div dir="ltr">We're using Shibboleth with Wordpress multisite here at Mount Holyoke College. I do have a custom fork of the plugin running, but not because of any of the outstanding issues. We are part of a consortium with 4 other colleges/universities and we needed a way to whitelist students from those other colleges, as well as a handful of other exceptions. So, basically, you're allowed into our Wordpress blog site if your account is a Mount Holyoke account, or if you're enrolled in a class here from one of the other 4 colleges, or if you're on a manually-maintained whitelist. The difference between my fork of the plugin and the stock version is maybe 10 lines of code (which simply short-circuits the access check if your eppn is contained within a particular MySQL table), so it's very easy to maintain. If we didn't need this somewhat-specialized functionality, we could probably get by with just the stock plugin. And there's probably some way I could use Shibboleth itself to do this magic, but despite being my school's Shibboleth administrator, it's still mostly a dark art to me.</div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Sep 1, 2016 at 12:14 PM, Stephen R Guglielmo <span dir="ltr"><<a href="mailto:srg@temple.edu" target="_blank">srg@temple.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div lang="EN-US" link="#0563C1" vlink="#954F72">
<div>
<p class="MsoNormal"><span style="color:black">Hello all,<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:black"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="color:black">We have a large WordPress multisite at our University. Currently, we are using a LDAP plugin to handle our authentication/authorization. Our Identity Management group wants everyone to move to Shibboleth if possible.
We already have the IdP infrastructure.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:black"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="color:black">The issue that concerns me is that the WordPress Shibboleth plugin [1] seems to be not very well maintained. On the GitHub repo for the plugin [2], there are pending pull requests from 2014 and 2015 and a handful
of pending issues (including some that are multisite-specific). The majority of the pull requests and issues have no response from the committer/maintainer.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:black"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="color:black">Is anyone else using Shibboleth for a WordPress multisite instance? Are you using a custom implementation or this plugin? I’m just looking for any feedback from anyone who is using it to see if it’s a worthy pursuit
or if we should just stick with LDAP.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:black"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="color:black">Thanks,<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:black">Steve Guglielmo<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:black">Temple University<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:black"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="color:black">[1] <a href="https://wordpress.org/plugins/shibboleth/" target="_blank">
https://wordpress.org/plugins/<wbr>shibboleth/</a><u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:black">[2] <a href="https://github.com/mitcho/shibboleth" target="_blank">
https://github.com/mitcho/<wbr>shibboleth</a><u></u><u></u></span></p>
</div>
</div>
<br>______________________________<wbr>_________________<br>
wp-edu mailing list<br>
<a href="mailto:wp-edu@lists.automattic.com">wp-edu@lists.automattic.com</a><br>
<a href="http://lists.automattic.com/mailman/listinfo/wp-edu" rel="noreferrer" target="_blank">http://lists.automattic.com/<wbr>mailman/listinfo/wp-edu</a><br>
<br></blockquote></div><br></div>