-
Notifications
You must be signed in to change notification settings - Fork 36
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
8 changed files
with
83 additions
and
40 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
14 changes: 14 additions & 0 deletions
14
user_saml_shibboleth-idp/shibboleth-idp/conf/attributes/default-rules.xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,14 @@ | ||
<?xml version="1.0" encoding="UTF-8"?> | ||
<beans xmlns="http://www.springframework.org/schema/beans" | ||
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" | ||
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd" | ||
|
||
default-init-method="initialize" | ||
default-destroy-method="destroy"> | ||
|
||
<!-- | ||
This file is empty since we stick with the Attribute encoders. Cf: | ||
- https://shibboleth.atlassian.net/wiki/spaces/IDP4/pages/1265631499/ReleaseNotes#Attribute-Related-Changes | ||
--> | ||
|
||
</beans> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
44 changes: 44 additions & 0 deletions
44
user_saml_shibboleth-idp/shibboleth-idp/conf/oidc-credentials.xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,44 @@ | ||
<?xml version="1.0" encoding="UTF-8"?> | ||
<beans xmlns="http://www.springframework.org/schema/beans" | ||
xmlns:util="http://www.springframework.org/schema/util" | ||
xmlns:p="http://www.springframework.org/schema/p" | ||
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" | ||
xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd | ||
http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd" | ||
default-init-method="initialize" | ||
default-destroy-method="destroy"> | ||
<!-- This file contains default oidc signing credentials. This file should be imported to credentials.xml --> | ||
<!-- The list of ALL of your OP's ID Token / UserInfo response signing credentials for the default security configuration. | ||
If you define additional signing credentials, for example for new supported signing algorithms, make sure to include them | ||
within this list. --> | ||
<bean class="net.shibboleth.idp.profile.spring.factory.BasicX509CredentialFactoryBean" id="shibboleth.oidc.PEMSigningCredential" p:certificateResource="%{idp.signing.cert}" p:entityId-ref="issuer" p:keyNames="Signing" p:privateKeyResource="%{idp.signing.key}"/> | ||
<bean class="net.shibboleth.idp.profile.spring.factory.BasicX509CredentialFactoryBean" id="shibboleth.oidc.PEMEncryptionCredential" p:certificateResource="%{idp.encryption.cert}" p:entityId-ref="issuer" p:keyNames="Encryption" p:privateKeyResource="%{idp.encryption.key}"/> | ||
<util:list id="shibboleth.oidc.SigningCredentials"> | ||
<ref bean="shibboleth.oidc.PEMSigningCredential"/> | ||
</util:list> | ||
<!-- The list of ALL of your OP's Request Object decryption credentials for the default security configuration. If you | ||
define additional decryption credentials, for example to support new algorithm, make sure to include them within | ||
this list. --> | ||
<util:list id="shibboleth.oidc.EncryptionCredentials"> | ||
<ref bean="shibboleth.oidc.PEMEncryptionCredential"/> | ||
</util:list> | ||
<!-- If you need to publish key set different from shibboleth.oidc.EncryptionCredentials, define a list named as shibboleth.oidc.EncryptionCredentialsToPublish --> | ||
<alias name="shibboleth.oidc.EncryptionCredentials" alias="shibboleth.oidc.EncryptionCredentialsToPublish"/> | ||
<!-- | ||
Example of case having two active encryption credentials but then stop publishing the second before removing it from active configuration. | ||
<util:list id="shibboleth.oidc.EncryptionCredentialsToPublish"> | ||
<ref bean="shibboleth.oidc.OnlyNewDefaultRSAEncryptionCredential" /> | ||
</util:list> | ||
--> | ||
<!-- If you need to publish key set different from shibboleth.oidc.SigningCredentials, define a list named as shibboleth.oidc.SigningCredentialsToPublish --> | ||
<alias name="shibboleth.oidc.SigningCredentials" alias="shibboleth.oidc.SigningCredentialsToPublish"/> | ||
<!-- | ||
Example of case publishing signing credential before taking it to active configuration: | ||
<util:list id="shibboleth.oidc.SigningCredentialsToPublish"> | ||
<ref bean="shibboleth.oidc.DefaultRSSigningCredential" /> | ||
<ref bean="shibboleth.oidc.DefaultESSigningCredential" /> | ||
<ref bean="shibboleth.oidc.UpcomingDefaultRSSigningCredential" /> | ||
</util:list> | ||
--> | ||
</beans> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters