|
|
|
|
@ -170,21 +170,32 @@ Security |
|
|
|
|
- **Authentication Level**: required authentication level to access this SP |
|
|
|
|
- **Access Rule**: lets you specify a :doc:`Perl rule<rules_examples>` to restrict access to this SP |
|
|
|
|
|
|
|
|
|
Extra variables |
|
|
|
|
^^^^^^^^^^^^^^^ |
|
|
|
|
|
|
|
|
|
.. tip:: |
|
|
|
|
The following environment variables are available in SAML access rules and macros: |
|
|
|
|
|
|
|
|
|
* ``$env->{llng_saml_sp}`` : entityID of the SAML service |
|
|
|
|
* ``$env->{llng_saml_spconfkey}`` : configuration key of the SAML service |
|
|
|
|
|
|
|
|
|
.. versionadded:: 2.0.10 |
|
|
|
|
|
|
|
|
|
* ``$env->{llng_saml_acs}`` : AssertionConsumerServiceURL, if specified in the AuthnRequest |
|
|
|
|
|
|
|
|
|
The IDP Initiated URL is the SSO SAML URL with GET |
|
|
|
|
parameters: |
|
|
|
|
IDP Initiated mode |
|
|
|
|
^^^^^^^^^^^^^^^^^^ |
|
|
|
|
|
|
|
|
|
- IDPInitiated: 1 |
|
|
|
|
- One of: |
|
|
|
|
The IDP Initiated URL is the SSO SAML URL with GET |
|
|
|
|
parameters: |
|
|
|
|
|
|
|
|
|
- sp: SP entity ID |
|
|
|
|
- spConfKey: SP configuration key |
|
|
|
|
- IDPInitiated: 1 |
|
|
|
|
- One of: |
|
|
|
|
|
|
|
|
|
For example: |
|
|
|
|
http://auth.example.com/saml/singleSignOn?IDPInitiated=1&spConfKey=simplesamlphp |
|
|
|
|
- sp: SP entity ID |
|
|
|
|
- spConfKey: SP configuration key |
|
|
|
|
|
|
|
|
|
For example: |
|
|
|
|
http://auth.example.com/saml/singleSignOn?IDPInitiated=1&spConfKey=simplesamlphp |
|
|
|
|
|
|
|
|
|
Macros |
|
|
|
|
^^^^^^ |
|
|
|
|
|
Maxime Besson
4 years ago