Edublogs is a sponsored partner of the InCommon Federation.
We can provide single-sign-on authentication using Shibboleth to handle user and blog management.
The process is relatively simple and our team will provide assistance along the way.
Optional (but preferred):
For limiting blog creation to certain groups:
– eduPersonAffiliation and/or eduPersonScopedAffiliation
Send an email to firstname.lastname@example.org with a request to set up Shibboleth via InCommon with the following information:
- Your Login URL.
- Your Logout URL (Optional).
- A test shibboleth user account that we can use for testing.
- Your Attributes.
Upon receipt of your email we will set up your metadata and submit it to InCommon.
Before InCommon will release your metadata to us it needs to be approved by your team; and the email is sent from InCommon to the WHOIS main contact. You need to make sure the person listed in your the WHOIS main contact is aware that they will be receiving an email from Incommon to approve use of our entityID and ask them to send a reply to InCommon approving their request as soon as possible.
- InCommon only publish metadata on weekdays, once a day,
- InCommon needs email confirmation from your WHOIS contact before they’ll release the metadata to us.
Exchange metadata manually
If you aren’t a member of InCommon we need to exchange shibboleth metadata manually.
Send an email to email@example.com with a request to set up Shibboleth with the following information:
- EntityID for your SP
- Metadata for your SP
- Your Login URL
- Your Logout URL (Optional)
- A test shibboleth user account that we can use for testing
- Your attributes
Upon receipt of your email we will set up your metadata.
We will send a link to the metadata once it has been set up, ask you to add our Metadata to your IdP config and let us know once it has been added so we can complete installing shibboleth.
You can make changes to your shibboleth settings as follows:
1. Go to Settings > Shibboleth in the network admin dashboard.
2. Once you have made your changes click Save Changes at the bottom of the page.
Login Button Text
This is where you can change the text that appears on the button on the default WordPress login page.
Shibboleth Is Default Login
By default, it is set to force Shibboleth login and will redirect to your Shibboleth login page.
Uncheck the option to “Use Shibboleth as the default login method” if you need to add some users as local users and want to provide an option for users to log in as a local user or a Shibboleth user.
User Profile Data
Used to define the Shibboleth headers which should be mapped to each user profile attribute. Managed profile fields are updated each time the user logs in using the current data provided by Shibboleth and users will be prevented from manually updating these fields from within WordPress
By default, it is set to create a blog the first time a new user signs in with their Shibboleth username and password.
Uncheck the option to “Create blog” if you only want user accounts created.
Blog Eligibility Header
Used to control which users have blogs auto created if you’ve unchecked “Create Blog”. For example, you can use blog eligibility header set to auto create blogs for staff and faculty only; and students set to auto create usernames.