41 lines
1.4 KiB
Properties
41 lines
1.4 KiB
Properties
# Properties that control the behavior of post-login subject c14n flows.
|
|
# A few more advanced settings require XML configuration, see flow-specific docs.
|
|
|
|
|
|
# Simple username -> principal name c14n
|
|
#idp.c14n.simple.lowercase = false
|
|
#idp.c14n.simple.uppercase = false
|
|
#idp.c14n.simple.trim = true
|
|
|
|
|
|
# Attribute resolution -> principal name c14n
|
|
#idp.c14n.attribute.lowercase = false
|
|
#idp.c14n.attribute.uppercase = false
|
|
#idp.c14n.attribute.trim = true
|
|
# Lists of attributes to resolve...
|
|
#idp.c14n.attribute.attributesToResolve =
|
|
# and then select a principal name from
|
|
#idp.c14n.attribute.attributeSourceIds =
|
|
# Allows direct use of attributes via SAML proxy authn, bypasses resolver
|
|
#idp.c14n.attribute.resolveFromSubject = false
|
|
#idp.c14n.attribute.resolutionCondition = shibboleth.Conditions.TRUE
|
|
|
|
# X.509 certificate -> principal name c14n
|
|
#idp.c14n.x500.lowercase = false
|
|
#idp.c14n.x500.uppercase = false
|
|
#idp.c14n.x500.trim = true
|
|
# Precedence is to check for a subjectAltName and then an OID RDN
|
|
# Comma-delimited list of subjectAltName type numbers
|
|
# (See https://tools.ietf.org/html/rfc5280#section-4.2.1.6)
|
|
#idp.c14n.x500.subjectAltNameTypes =
|
|
# Comma-delimited list of OIDS
|
|
#idp.c14n.x500.objectIDs =
|
|
|
|
# Proxied SAML NameID -> principal name c14n
|
|
#idp.c14n.saml.proxy.lowercase = false
|
|
#idp.c14n.saml.proxy.uppercase = false
|
|
|
|
# NameID consumption from SAML requests
|
|
#idp.c14n.saml.lowercase = false
|
|
#idp.c14n.saml.uppercase = false
|