Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Browse files
Browse the repository at this point in the history
Test configuration tree.
Chris Bynum
committed
Aug 1, 2016
1 parent
e2044b3
commit 6c29088
Showing
442 changed files
with
538,451 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,33 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <!-- This file is an EXAMPLE metadata configuration file. --> | ||
| <MetadataProvider id="ShibbolethMetadata" xsi:type="ChainingMetadataProvider" | ||
| xmlns="urn:mace:shibboleth:2.0:metadata" | ||
| xmlns:resource="urn:mace:shibboleth:2.0:resource" | ||
| xmlns:security="urn:mace:shibboleth:2.0:security" | ||
| xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" | ||
| xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" | ||
| xsi:schemaLocation="urn:mace:shibboleth:2.0:metadata http://shibboleth.net/schema/idp/shibboleth-metadata.xsd | ||
| urn:mace:shibboleth:2.0:resource http://shibboleth.net/schema/idp/shibboleth-resource.xsd | ||
| urn:mace:shibboleth:2.0:security http://shibboleth.net/schema/idp/shibboleth-security.xsd | ||
| urn:oasis:names:tc:SAML:2.0:metadata http://docs.oasis-open.org/security/saml/v2.0/saml-schema-metadata-2.0.xsd"> | ||
|
|
||
| <MetadataProvider id="InCommonMetadata" | ||
| xsi:type="FileBackedHTTPMetadataProvider" | ||
| backingFile="%{idp.home}/metadata/localCopyFromInCommon.xml" | ||
| metadataURL="http://md.incommon.org/InCommon/InCommon-metadata.xml" | ||
| maxRefreshDelay="PT8H"> | ||
|
|
||
| <MetadataFilter xsi:type="RequiredValidUntil" maxValidityInterval="P14D" /> | ||
|
|
||
| <MetadataFilter xsi:type="SignatureValidation" | ||
| certificateFile="${idp.home}/credentials/inc-md-cert.pem" /> | ||
|
|
||
| <MetadataFilter xsi:type="EntityRoleWhiteList"> | ||
| <RetainedRole>md:SPSSODescriptor</RetainedRole> | ||
| </MetadataFilter> | ||
|
|
||
| </MetadataProvider> | ||
|
|
||
| <MetadataProvider id="testbed.tier" xsi:type="FilesystemMetadataProvider" metadataFile="/opt/shibboleth-idp/metadata/testbed-tier-metadata.xml"/> | ||
|
|
||
| </MetadataProvider> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,32 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <beans xmlns="http://www.springframework.org/schema/beans" | ||
| xmlns:context="http://www.springframework.org/schema/context" | ||
| xmlns:util="http://www.springframework.org/schema/util" | ||
| xmlns:p="http://www.springframework.org/schema/p" | ||
| xmlns:c="http://www.springframework.org/schema/c" | ||
| xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" | ||
| xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd | ||
| http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context.xsd | ||
| http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util.xsd" | ||
|
|
||
| default-init-method="initialize" | ||
| default-destroy-method="destroy"> | ||
|
|
||
| <!-- Map of access control policies used to limit access to administrative functions. --> | ||
|
|
||
| <!-- | ||
| The only built-in implementation of the AccessControl interface is IP-based, as below. | ||
| The ranges provided MUST be CIDR network expressions. To specify a single address, | ||
| add "/32" or "/128" for IPv4 or IPv6 respectively. | ||
| --> | ||
|
|
||
| <util:map id="shibboleth.AccessControlPolicies"> | ||
|
|
||
| <entry key="AccessByIPAddress"> | ||
| <bean parent="shibboleth.IPRangeAccessControl" | ||
| p:allowedRanges="#{ {'127.0.0.1/32', '::1/128'} }" /> | ||
| </entry> | ||
|
|
||
| </util:map> | ||
|
|
||
| </beans> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,36 @@ | ||
| <?xml version="1.0" encoding="UTF-8"?> | ||
| <AttributeFilterPolicyGroup id="ShibbolethFilterPolicy" | ||
| xmlns="urn:mace:shibboleth:2.0:afp" | ||
| xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" | ||
| xsi:schemaLocation="urn:mace:shibboleth:2.0:afp http://shibboleth.net/schema/idp/shibboleth-afp.xsd"> | ||
|
|
||
| <AttributeFilterPolicy id="releaseToAnyone"> | ||
| <PolicyRequirementRule xsi:type="ANY" /> | ||
|
|
||
| <AttributeRule attributeID="eduPersonPrincipalName"> | ||
| <PermitValueRule xsi:type="ANY" /> | ||
| </AttributeRule> | ||
|
|
||
| <AttributeRule attributeID="eduPersonScopedAffiliation"> | ||
| <PermitValueRule xsi:type="ANY" /> | ||
| </AttributeRule> | ||
|
|
||
| <AttributeRule attributeID="givenName"> | ||
| <PermitValueRule xsi:type="ANY" /> | ||
| </AttributeRule> | ||
|
|
||
| <AttributeRule attributeID="sn"> | ||
| <PermitValueRule xsi:type="ANY" /> | ||
| </AttributeRule> | ||
|
|
||
| <AttributeRule attributeID="displayName"> | ||
| <PermitValueRule xsi:type="ANY" /> | ||
| </AttributeRule> | ||
|
|
||
| <AttributeRule attributeID="mail"> | ||
| <PermitValueRule xsi:type="ANY" /> | ||
| </AttributeRule> | ||
|
|
||
| </AttributeFilterPolicy> | ||
|
|
||
| </AttributeFilterPolicyGroup> |
Oops, something went wrong.