/[pdpsoft]/trunk/eu.rcauth.pilot-ica/DS/ansible/roles/delegserver/templates/shibboleth2.xml.j2
ViewVC logotype

Diff of /trunk/eu.rcauth.pilot-ica/DS/ansible/roles/delegserver/templates/shibboleth2.xml.j2

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 3006 by tamasb, Mon Apr 11 13:30:48 2016 UTC revision 3007 by tamasb, Tue May 3 17:07:17 2016 UTC
# Line 23  Line 23 
23    
24      <!-- The ApplicationDefaults element is where most of Shibboleth's SAML bits are defined. -->      <!-- The ApplicationDefaults element is where most of Shibboleth's SAML bits are defined. -->
25      <ApplicationDefaults entityID="{{ shib_entity_id }}"      <ApplicationDefaults entityID="{{ shib_entity_id }}"
26                           REMOTE_USER="eppn epuid eptid targeted-id persistent-id">                           REMOTE_USER="eppn epuid eptid targeted-id persistent-id"
27                             metadataAttributePrefix="Meta-">
28    
29          <!--          <!--
30          Controls session lifetimes, address checks, cookie handling, and the protocol handlers.          Controls session lifetimes, address checks, cookie handling, and the protocol handlers.
# Line 160  Line 161 
161          -->          -->
162    
163          <!-- Map to extract attributes from SAML assertions. -->          <!-- Map to extract attributes from SAML assertions. -->
164          <AttributeExtractor type="XML" validate="true" reloadChanges="false" path="attribute-map.xml"/>          <AttributeExtractor type="Chaining">
165                            <AttributeExtractor type="XML" validate="true" reloadChanges="false" path="attribute-map.xml"/>
166                    <!-- Extrancts the md:organizationDisplayName from the IdP metadata -->
167                    <AttributeExtractor type="Metadata" OrganizationDisplayName="orgDisplayName"/>
168            </AttributeExtractor>        
169    
170          <!-- Use a SAML query if no attributes are supplied during SSO. -->          <!-- Use a SAML query if no attributes are supplied during SSO. -->
171          <AttributeResolver type="Query" subjectMatch="true"/>          <AttributeResolver type="Query" subjectMatch="true"/>
172    

Legend:
Removed from v.3006  
changed lines
  Added in v.3007

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28