These CKAN Versions are exactely matched:

• 2.10.0
• 2.10.1
• 2.10.2
• 2.10.3
• 2.10.4
• 2.10.5
• 2.10.6
• 2.10.7
• 2.10.8
• 2.10.9
• 2.11.0
• 2.11.1
• 2.11.2
• 2.11.3
• 2.11.4
• 2.12.0
• 2.4.0
• 2.4.1
• 2.4.2
• 2.4.3
• 2.4.4
• 2.4.5
• 2.4.6
• 2.4.7
• 2.4.8
• 2.4.9
• 2.5.0
• 2.5.1
• 2.5.2
• 2.5.3
• 2.5.4
• 2.5.5
• 2.5.6
• 2.5.7
• 2.5.8
• 2.5.9
• 2.6.0
• 2.6.1
• 2.6.2
• 2.6.3
• 2.6.4
• 2.6.5
• 2.6.6
• 2.6.7
• 2.6.8
• 2.6.9
• 2.7.0
• 2.7.1
• 2.7.10
• 2.7.11
• 2.7.12
• 2.7.2
• 2.7.3
• 2.7.4
• 2.7.5
• 2.7.6
• 2.7.7
• 2.7.8
• 2.7.9
• 2.8.0
• 2.8.1
• 2.8.10
• 2.8.11
• 2.8.12
• 2.8.2
• 2.8.3
• 2.8.4
• 2.8.5
• 2.8.6
• 2.8.7
• 2.8.8
• 2.8.9
• 2.9.0
• 2.9.0a
• 2.9.1
• 2.9.10
• 2.9.11
• 2.9.13
• 2.9.2
• 2.9.3
• 2.9.4
• 2.9.5
• 2.9.6
• 2.9.7
• 2.9.8
• 2.9.9

ckanext-shibboleth

Shibboleth identification plugin for CKAN 2.4.

Provides SSO authentication via Shibboleth. Originally developed by CSC – IT Center for Science Ltd. for the Etsin research data finder. Modified and maintained by GeoSolutions.

Configuration

In production.ini:

ckan.plugins = shibboleth
ckanext.shib.login_path = /shibboleth/login
ckanext.shib.logout_path = /

In who.ini, configure repoze.who with:

[plugin:shibboleth]
use = ckanext.shibboleth.repoze_who:make_identification_plugin
session = Shib-Session-ID
eppn = eppn
mail = mail
fullname = cn
givenname = givenName
surname = sn
check_auth_key = Shib-Identity-Provider
check_auth_op = equals
check_auth_value = https://your-idp

Apache HTTPD requires mod_shib with:

<Location /shibboleth/login>
    AuthType shibboleth
    ShibRequireSession On
    require valid-user
</Location>

License

AGPL-3.0 (Copyright (C) 2012-2015 Finnish Ministry of Education and Culture)