Feide and Shibboleth¶
Feide and Shibboleth federations are based on the same concepts, but Shibboleth federations are somewhat different from Feide. In Shibboleth, it is common to have a mesh of IdPs and SPs, where each service that wants to integrate with a new institution must talk to the different organizations that operate IdPs.
Feide operates one central IdP. A service integrates once with this central IdP, and Feide adjusts access according to the service provider’s and home organization’s requests.
If your service already is integrated with a Shibboleth federation, you can easily integrate with Feide (or the other way around) if the following is in place:
- Feide uses the SAML 2.0 protocol. You need to ensure that your service supports SAML 2.0, older versions are not compatible with Feide.
- Feide requires the use of HTTPS.
- Feide encourages single logout support.