shibboleth-dev - Shib 2.0 IdP relying-party.xml configuration changes
Subject: Shibboleth Developers
List archive
- From: Brent Putman <>
- To:
- Subject: Shib 2.0 IdP relying-party.xml configuration changes
- Date: Tue, 15 Jan 2008 18:08:01 -0500
|
For those people doing beta testing with the new 2.0 IdP: Some changes
were found to be necessary to the security schema types that are used
within relying-party.xml. Those changes have just been checked in.
After updating to the new code, if you want to use an existing
relying-party.xml config file, you'll need to update any trust engine
declarations to reflect new values for xsi:type. Essentially the
existing trust engine configuration types have had "Metadata-"
prepended to them, for example: <security:TrustEngine id="shibboleth.SignatureTrustEngine" xsi:type="security:MetadataExplicitKeySignature" metadataProviderRef="ShibbolethMetadata" /> <security:TrustEngine id="shibboleth.CredentialTrustEngine" xsi:type="security:MetadataExplicitKey" metadataProviderRef="ShibbolethMetadata" /> This change is being made to reflect that these config elements actually correspond to trust engines which are based on SAML metadata provider-based resolvers. Trust engine configuration schema types will be added which are *not* based on SAML metadata-based resolvers, and we thought it best to cleanly disambiguate amongst them. Thanks, Brent |
- Shib 2.0 IdP relying-party.xml configuration changes, Brent Putman, 01/15/2008
Archive powered by MHonArc 2.6.16.