Restricting access to a Service Provider on the IdP side

Mak, Steven makst at
Tue Nov 15 14:29:06 UTC 2022

Assuming this is SP metadata coming from an aggregate, we always just use a MetadataFilter on our metadataProvider that pulls the SP in to remove the SP from the aggregate on load.

If not, simply removing their SP metadata will do the trick.

- Steve

On 11/15/22, 9:27 AM, "users on behalf of Ulf Seltmann" <users-bounces at on behalf of ulf.seltmann at> wrote:


    we need to restrict access to an SP on IdP-Side. I found a thread from
    5 years ago[1]. So far so good, but what it does not explain is how to
    wire the bean into the relying-party.xml.

    Can anybody enlight me please or point me to an example which i can


    Ulf Seltmann

    Hochschule für Musik und Theater Leipzig
    Grassistraße 8 | 04107 Leipzig
    Tel.: +49 341 2144 681
    ulf.seltmann at |

More information about the users mailing list