<Context> <Valve className="org.picketlink.identity.federation.bindings.tomcat.sp.SPPostSignatureFormAuthenticator" /> </Context>
As of PicketLink v2.1, the ServiceProviderAuthenticator is the preferred Service Provider configuration to the deprecated SPPostFormAuthenticator, SPRedirectFormAuthenticator, SPPostSignatureFormAuthenticator andSPRedirectSignatureFormAuthenticator.
SPPostSignatureFormAuthenticator is used to provide signature/encryption services to a Service Provider (SP) application for HTTP/POST binding of SAMLv2 specification. This authenticator
is an extension of the SPPostFormAuthenticator.
HTTP/POST Binding (along with signature/encryption support)
Configure in WEB-INF/context.xml
Configure in META-INF/context.xml
<Context> <Valve className="org.picketlink.identity.federation.bindings.tomcat.sp.SPPostSignatureFormAuthenticator" /> </Context>
# |
Name |
Type |
Objective |
Since |
1 |
configFile |
String |
optional - fully qualified location of the config file |
2.0 |
2 |
samlHandlerChainClass |
String |
optional - fqn of a custom SAMLHandlerChain implementation |
2.0 |
3 |
serviceURL |
String |
optional - the service provider URL |
2.0 |
4 |
saveRestoreRequest |
boolean |
should the authenticator save the original request and restore it after authentication |
2.0 |
5 |
configProvider |
String |
optional - a fqn of the SAMLConfigurationProvider implementation |
2.0 |
6 |
issuerID |
String |
optional - customize the issuer id |
2.0 |
7 |
idpAddress |
String |
optional - If the request.getRemoteAddr is not exactly the IDP address that you have keyed |
2.0 |