Opened 3 years ago
Last modified 3 years ago
#1090 new defect
Authentication to OTA failed for user from University of Tübingen
Reported by: | martin.wynne@bodleian.ox.ac.uk | Owned by: | André Moreira |
---|---|---|---|
Priority: | major | Milestone: | |
Component: | AAI | Version: | |
Keywords: | Cc: |
Description
We received the following message (appended below) and I would like to ask for the latest pro forma message that we need to send to institutions under these circumstances. I was given a message to use last year (see ticket #1087), but the links in it are not up to date any more.
Best,
Martin
<<appended message starts >>
Dear Sir or Madam,
a user of our university library has tried to access the "York-Toronto-Helsinki Parsed Corpus of Old English prose (YCOE)" of the Oxford Text Archive.
https://ota.bodleian.ox.ac.uk/repository/xmlui/handle/20.500.12024/2462
When trying to log in, the user received the following message: "The login process can't continue because your home institution (https://idp.uni-tuebingen.de/shibboleth) did not send the required information.". Could you please tell us exactly what values need to be sent via Shibboleth in order for access to be granted? Is there also a possibility to access the service without revealing personal data?
Thanks in advance!
With kind regards
Felix Flumm
--
Eberhard Karls University Tübingen
University Library
Akquisition und Metadaten
Medienpakete und Datenbanken
Wilhelmstr. 32 · 72074 Tübingen · Germany
Telefon +49 7071 29-77831 · Telefax +49 7071 29-3123
That's right, we recently updated the template. This is the current version:
Dear $ADDRESSEE,
On behalf of one of the Service Providers from the CLARIN Service Provider Federation (SPF) [1] we would like to inform you that users from your home organisation tried to access a protected service or resource but were unable to do so because your Identity Provider has not released all the mandatory attributes.
All the Service Providers in the CLARIN SPF are:
1) implementing the GÉANT Data Protection Code of Conduct [2];
2) are members of the REFEDS Research and Scholarship Entity Category[3];
3) are CLARIN members and have the http://clarin.eu/category/clarin-member Entity Category which you can use for filtering.
Therefore, we kindly ask you to implement a filter releasing the required attributes to all CLARIN SPF members.The latest authentication attempt was to:
SP entityID=$YOURENTITYID
Attributes released:
$ATTRIBUTE1
$ATTRIBUTE2
Please, see the recommendation from the DFN federation which attributes to release to CLARIN SPF SPs and how to do it:
https://doku.tid.dfn.de/de:shibidp:config-attributes-clarin
or see the CLARIN's attribute profile described at
https://www.clarin.eu/content/attributes-service-provider-federation .
Kind Regards,
$SENDER
[1] https://www.clarin.eu/ and https://www.clarin.eu/content/service-provider-federation
[2] http://geant3plus.archive.geant.net/uri/dataprotection-code-of-conduct/V1/Pages/default.aspx
[3] https://refeds.org/category/research-and-scholarship