You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

authsources.php
'default-sp' => array(
    'saml:SP',
    'privatekey' => 'saml.key',
    'certificate' => 'saml.crt',
    'sign.logout' => true,
    'signature.algorithm' => 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256',
    // The entity ID of this SP.
    // Can be NULL/unset, in which case an entity ID is generated based on the metadata URL.
    'entityID' => 'https://example.org/saml', // FIXME: CHANGE THIS
    // The entity ID of the IdP this should SP should contact.
    // Can be NULL/unset, in which case the user will be shown a list of available IdPs.
    'idp' => null,
    // The URL to the discovery service.
    // Can be NULL/unset, in which case a builtin discovery service will be used.
    'discoURL' => null,
    //'discoURL' => 'https://example.org/saml/module.php/discopower/disco.php',
    // Don't request a specific NameID format
    'NameIDPolicy' => null,
 
    // Create 'persistent-id' attribute from NameID
    'authproc' => array(
        10 => array(
            'class' => 'saml:NameIDAttribute',
            'format' => '%F|%I!%S!%V',
            'attribute' => 'nameid_qualified',
        ),
        20 => array(
            'class' => 'core:AttributeAlter',
            'subject' => 'nameid_qualified',
            'pattern' => '/^urn:oasis:names:tc:SAML:2\.0:nameid-format:persistent\|/',
            'target' => 'persistent-id',
            'replacement' => '',
    ),
),
  • No labels