disable assertion encryption by entityID

Peter Schober peter.schober at univie.ac.at
Wed Sep 8 12:16:26 UTC 2021

* Bergmann, Clemens <clemens.bergmann at tu-darmstadt.de> [2021-09-08 13:14]:
> My understanding of that config file is, that I would have to copy that whole profileConfigurations and keep it in sync between the DefaultRelyingParty and the RelyingPartyByName.
> I tried to prevent this by not passing a static value to encryptAssertions but using a predicate.

ACK. I don't have an answer to your original/literal question.

My own config is much simpler (few overrides) but I agree that
repeating the profile config if all you want is change /one/ setting
is not ideal.
It's far from an issue for me, though. YMMV, of course.


More information about the users mailing list