IDPServlet supports the SAMLv2 HTTP/POST binding for an IDP running on any servlet container.
|
# |
Name |
Type |
Objective |
Default |
Since |
|
1 |
CONFIG_PROVIDER |
String |
optional - fqn of an implementation of the SAMLConfigurationProvider interface. |
|
2.0 |
|
2 |
SIGN_OUTGOING_MESSAGES |
boolean |
optional - whether the IDP should sign outgoing messages |
true |
2.0 |
|
3 |
ROLE_GENERATOR |
String |
optional - fqn of a RoleGenerator |
org.picketlink.identity.federation.web.roles.DefaultRoleGenerator |
2.0 |
|
4 |
ATTRIBUTE_KEYS |
String |
optional - comma separated list of keys for attributes that need to be sent |
|
2.0 |
|
5 |
IDENTITY_PARTICIPANT_STACK |
String |
optional - fqn of a custom IdentityParticipantStack implementation |
|
2.0 |
|
|
|
|
|
|
|
The IDPLoginServlet that is configured in the web application authenticates the user. The IDPServlet then sends back the SAML response message with the SAML assertion back to the Service Provider(SP).