Using metadata-driven overrides and relying party config
Michael Grady
mgrady at unicon.net
Fri Jan 15 15:02:01 UTC 2021
> On Jan 14, 2021, at 2:06 PM, Cantor, Scott <cantor.2 at OSU.EDU> wrote:
>
>> but then having an override section that applies the following:
>
>> <bean parent="SAML2.SSO"
>
> Wrong parent. *Nothing* can be using metadata unless you add the MDDriven suffix to the parent bean name.
And to bring this thread full circle, it does work fine once the override references the MDDriven bean. Security config from the metadata entity attribute, and the "what to sign" from the override. Thanks!
--
Michael A. Grady
IAM Architect, Unicon, Inc.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20210115/a7f7fc8a/attachment.htm>
More information about the users
mailing list