12.5.4.4.5. SPRedirectSignatureFormAuthenticator
Warning
As of PicketLink v2.1, the Section 12.5.4.4.4, “ServiceProviderAuthenticator” is the preferred Service Provider configuration to the deprecated Section 12.5.4.4.8, “SPPostFormAuthenticator” , Section 12.5.4.4.6, “SPRedirectFormAuthenticator” , Section 12.5.4.4.7, “SPPostSignatureFormAuthenticator” and Section 12.5.4.4.5, “SPRedirectSignatureFormAuthenticator” .
SPRedirectSignatureFormAuthenticator is used to provide signature/encryption services to a Service Provider (SP) application for HTTP/Redirect binding of SAMLv2 specification. This authenticator
is an extension of the Section 12.5.4.4.6, “SPRedirectFormAuthenticator” .
12.5.4.4.5.2. Configuration
12.5.4.4.5.2.3. Untitled
Error
Topic 29826 failed validation and is not included in this build.
Please review the compiler error for Topic ID 29826 for more detailed information.
12.5.4.4.5.2.4. Example:
Example 12.2. context.xml
<Context> <Valve className="org.picketlink.identity.federation.bindings.tomcat.sp.SPRedirectSignatureFormAuthenticator" /> </Context>
12.5.4.4.5.2.5. Attributes
|
#
|
Name
|
Type
|
Objective
|
Since
|
|---|---|---|---|---|
|
1
|
configFile
|
String
|
optional - fully qualified location of the config file Default: /WEB-INF/picketlink-idfed.xml
|
2.0
|
|
2
|
samlHandlerChainClass
|
String
|
optional - fqn of a custom SAMLHandlerChain implementation
|
2.0
|
|
3
|
serviceURL
|
String
|
optional - the service provider URL
|
2.0
|
|
4
|
saveRestoreRequest
|
boolean
|
should the authenticator save the original request and restore it after authentication Default: true
|
2.0
|
|
5
|
configProvider
|
String
|
optional - a fqn of the SAMLConfigurationProvider implementation
|
2.0
|
|
6
|
issuerID
|
String
|
optional - customize the issuer id
|
2.0
|
|
7
|
idpAddress
|
String
|
optional - If the request.getRemoteAddr is not exactly the IDP address that you have keyed in your deployment descriptor for keystore alias, you can configure it explicitly
|
2.0
|