The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

[Stefan Winter <stefan.winter AT restena.lu>]

Hello,

> earlier this year there was a discussion about adding option(s) to
> suggest/validate a realm suffix for username input, where feasible.
> Tomasz noted the option to use device/EAP-type -specific text for that
> (in CAT web UI, as opposed to installer).
> 
> Meanwhile, options for the former appeared in the "trunk"[1] UI, but
> they don't seem to be implemented beyond that: if enabled, upon saving
> the profile, the server says "Input validation error: Unknown state of
> boolean option!"

It's called trunk/the master branch because it's under active
development (and a quite significant re-factoring was going on in the
last weeks). So, breakage lurks everywhere at this point in time.

I'll look into this today.

> So the question is: Has this "feature" been abandoned after all or what?

If a feature were abandoned, the code would be removed. You'll also see
that other new features are already present in the admin-UI but haven't
made their way into the device modules yet. Particularly the federation
name and logo which are to be presented alongside the IdP logo for more
effective co-branding.

> If not (by any chance), is there any time-frame for release?

That feature will be part of release 1.2.

> It's still the most common "trap" for most new users and thus (still)
> the most common question.
> And may I add wrt the {device,EAP}-specific text (which would help,
> agreed) that there is no programmatic way (admin API method) to set such
> text in bulk.

That's because I assumed that setting this or not is highly
IdP-specific. Where one org may have the domain part mandatory in the
inner identity, another may simply not care because it authenticates the
inner identity with or without, and a third one does not want it at all
because they exclusively consider realmless IDs in the TLS tunnel.

It's interesting to learn that you consider that as something to set for
the federation operator. How do you know which style your IdPs
want/need? Is this something they can indicate in DjNRO?

Greetings,

Stefan Winter
> 
> Thanks,
> Z.
> 
> [1] https://cat-test.eduroam.org/trunk/admin/
> To unsubscribe, send this message:
> mailto:sympa AT lists.geant.org?subject=unsubscribe%20cat-users
> Or use the following link:
> https://lists.geant.org/sympa/sigrequest/cat-users


-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66

Attachment: 0x8A39DC66.asc
Description: application/pgp-keys

Attachment: signature.asc
Description: OpenPGP digital signature