SessionInitiator equivalent of SSO

Cantor, Scott cantor.2 at
Fri Nov 21 16:40:55 EST 2014

On 11/21/14, 9:26 PM, "Matt MacAdam" <mattjm at> wrote:

>What's the equivalent in a SessionInitiator element?   That is, which
>attributes of SessionInitiator are given default values (and what are
>the values?) when using the SSO element?

It installs a chain of them with the protocols identified. All the 
properties you set are set on each of the chained plugins, so they have 
the same meaning/use. You can in general set anything that you can set on 
those older elements and they'll be picked up, or ignored, as the case may 

>But, looking at the settings for, say, the SAML2 SessionInitiator,
>it's still not entirely clear what attributes are set, and what their
>values are (the docs give some hints, however).

The probable answer is that it's not set. I don't know which ones you're 
wondering about, but setting entityID basically sets, well, entityID. 
That's it. The rest are not set or defaulted.

>I can consistently set up working SessionInitiator elements, but it's
>not entirely clear to me in what ways they may differ in functionality
>from the SSO elements.

There are few cases where it would ever make sense to do them anymore 
unless you're using plugins other than Shib1, SAML2, WAYF, or SAMLDS.

-- Scott

More information about the users mailing list