There appears to be a newer version (that claims to work with 2.7) located at https://github.com/Eduix/crowd-shibboleth-module. I posted my URL answer there, but in case it get removed I will post here. I had to check out the login button at the nordu site itself to figure this out.

You set the login.url property in the seraph-config.xml file to http://YourServerName:8095/crowd/plugins/servlet/ssocookie?redirectTo=${originalurl}

The comment from Juhani Gurney is helpful.

Can you you or someone elaborate on the "We needed to to a slight modification to the Crowd Authenticators for Confluence and Jira so that they redirect to Crowd for login instead of showing the Confluence/Jira login screen" part?

I assume we need to update the "login.url" property in the seraph-config.xml file of confluence to point to our shib protected crowd server, but I am unsure what format for the URL to tell Crowd where to redirect back to. /crowd/login.action?redirectTo=https://confluence or something?? I can't seem to stumble upon it.

Thanks!

Anybody know what we are supposed to do after we follow the readme and drag the jar to the plugins directory? I don't see any change in the Crowd UI? Is there a walkthrough for this? README directions are pretty slim. Maybe this doesn't work with 2.7?

I would also like to see this built in. SAML 2 (Shib) is pretty much a deal killer requirement for any new applications purchased at my company.

And now Crowd 2.7 is due, and once again we'll need to rebuild it. Can't we just get this built and added to the Atlassian Marketplace like any other plugin?

Just thought I'd let the people watching this issue know that there is now a new version of the plugin available on the NORDUnet wiki for Crowd version 2.5.
https://wiki.nordu.net/display/NORDUwiki/Crowd+Shibboleth+Module

Ok, after a bit of digging, not only do the instructions for the NORDUnet filter not reflect the latest version of Crowd, but the code itself builds against an older version of Spring Security & Crowd. There appear to be some quite big changes in Spring Security, so it looks like the NORDUnet filter has been left behind. Hmm. Still "portable & upgradable"? I wonder... More digging required!

I've just followed the instructions for installing the NORDUnet filter into the latest version of Crowd, and found that the instructions no longer appear to reflect the latest version of Crowd

I've tinkered, but I haven't been able to get it run

Juhani,
I'm in the process of setting up to use your plugin but I'm not sure what is necessary for producing the necessary jar for installation into Crowd. Do I need to setup the Atlassian Plugin SDK in order to build the code and produce the jar?

Thanks for your insight Dave
It's clear now.

Cheers,
Leon

Hi Dan, Leon,

I'm afraid we don't have the expertise to help with Shibboleth implementations. Particularly in the case of interoperability issues; that's why we've never supported it in the past.

We've worked with juhani and his team to guide their implementation and make sure it's portable & upgradable. They have a far deeper understanding of Shib than we do. So, we think you'll actually get a better experience by using the Eduix connector and working with them to improve and maintain it.

That's a rather long way of saying "we're not going to support it ourselves because we don't think we can do a better job than Eduix and the Shibboleth community"

Cheers,
Dave.