Versions Compared

Version Old Version 35 New Version 36
Changes made by

Scott Cantor

Scott Cantor

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

File(s): conf/services.xml, conf/services.properties

...

Bean IDTypeFunctionReloadable Service ID
shibboleth.RelyingPartyResolverResourcesjava.util.List<Resource>RelyingPartyConfiguration resources for a new or migrated installation.shibboleth.RelyingPartyResolverService
shibboleth.LegacyRelyingPartyResolverResourcesjava.util.List<Resource>RelyingPartyConfiguration using a deprecated V2 relying-party.xml file.shibboleth.RelyingPartyResolverService
shibboleth.MetadataResolverResourcesjava.util.List<Resource>MetadataConfiguration resources.shibboleth.MetadataResolverService
shibboleth.AttributeResolverResourcesjava.util.List<Resource>AttributeResolverConfiguration resources.shibboleth.AttributeResolverService
shibboleth.AttributeFilterResourcesjava.util.List<Resource>AttributeFilterConfiguration resources.shibboleth.AttributeFilterService
shibboleth.NameIdentifierGenerationResourcesjava.util.List<Resource>NameIDGenerationConfiguration resources.shibboleth.NameIdentifierGenerationService
shibboleth.AccessControlResourcesjava.util.List<Resource>AccessControlConfiguration resources.shibboleth.ReloadableAccessControlService
shibboleth.MessageSourceResourcesjava.util.List<Resource>Internationalizable user interface messages.N/A
shibboleth.CASServiceRegistryResources 3.2java.util.List<Resource>Resources containing ServiceRegistry beans to be reloaded.shibboleth.ReloadableCASServiceRegistry

...

PropertyTypeDefaultFunction
idp.service.failFast 3.2BooleanfalseSet default fail-fast behavior of all services unless overridden by service
idp.service.logging.resourceResource path%{idp.home}/conf/logback.xmlLogging configuration resource to use (the reloadable service ID is "shibboleth.LoggingService")
idp.service.logging.failFastBooleantrueFail at startup if logging configuration is invalid
idp.service.logging.checkIntervalDuration0Time to notice changes to logging configuration and reload service.
A value of 0 indicates that the logging configuration never reloads
idp.service.relyingparty.resourcesBean IDshibboleth.RelyingPartyResolverResourcesName of Spring bean identifying resources to use for RelyingPartyConfiguration service
idp.service.relyingparty.failFastBooleanfalseFail at startup if RelyingPartyConfiguration is invalid
idp.service.relyingparty.checkIntervalDuration0Time to notice changes to RelyingPartyConfiguration configuration and reload service
A value of 0 indicates that the relying party configuration never reloads
idp.service.metadata.resourcesBean IDshibboleth.MetadataResolverResourcesName of Spring bean identifying resources to use for MetadataConfiguration service
idp.service.metadata.failFastBooleanfalseFail at startup if MetadataConfiguration is invalid
idp.service.metadata.checkIntervalDuration0Time to notice changes to MetadataConfiguration configuration and reload service
A value of 0 indicates that the metadata configuration never reloads
idp.service.attribute.resolver.resourcesBean IDshibboleth.AttributeResolverResourcesName of Spring bean identifying resources to use for AttributeResolverConfiguration service
idp.service.attribute.resolver.failFastBooleanfalseFail at startup if AttributeResolverConfiguration is invalid
idp.service.attribute.resolver.checkIntervalcheckInterval     Duration0Time to notice changes to AttributeResolverConfiguration configuration and reload service
A value of 0 indicates that the attribute resolver configuration never reloads
idp.service.attribute.resolver.maskFailures 3.1BooleantrueWhether attribute resolution failure should silently produce no attributes (the V2 behavior), or cause an overall profile request failure event
idp.service.attribute.filter.resourcesBean IDshibboleth.AttributeFilterResourcesName of Spring bean identifying resources to use for AttributeFilterConfiguration service
idp.service.attribute.filter.failFastBooleanfalseFail at startup if AttributeFilterConfiguration is invalid
idp.service.attribute.filter.checkIntervalDuration0Time to notice changes to AttributeFilterConfiguration configuration and reload service
A value of 0 indicates that the attribute filter configuration never reloads
idp.service.attribute.filter.maskFailures 3.1BooleantrueWhether attribute filtering failure should silently produce no attributes (the V2 behavior), or cause an overall profile request failure event
idp.service.nameidGeneration.resourcesBean IDshibboleth.NameIdentifierGenerationResourcesName of Spring bean identifying resources to use for NameIDGenerationConfiguration service
idp.service.nameidGeneration.failFastBooleanfalseFail at startup if NameIDGenerationConfiguration is invalid
idp.service.nameidGeneration.checkIntervalDuration0Time to notice changes to NameIDGenerationConfiguration configuration and reload service
idp.service.access.resourcesBean IDshibboleth.AccessControlResourcesName of Spring bean identifying resources to use for AccessControlConfiguration service
idp.service.access.failFastBooleantrueFail at startup if AccessControlConfiguration is invalid
idp.service.access.checkIntervalDuration0Time to notice changes to AccessControlConfiguration configuration and reload service
idp.service.cas.registry.resources 3.2Bean IDshibboleth.CASServiceRegistryResourcesName of Spring bean identifying resources to use for CAS service registry configuration
idp.service.cas.registry.failFast 3.2BooleanfalseFail at startup if CAS service registry configuration is invalid
idp.service.cas.registry.checkInterval 3.2Duration0Time to notice CAS service registry configuration changes and reload service
idp.message.resourcesBean IDshibboleth.MessageSourceResourcesName of Spring bean identifying Spring message property resources
idp.message.cacheSecondsInteger300Seconds between reloads of message property resources
idp.httpclient.useTrustEngineTLSSocketFactory 3.1BooleanfalseWhether to substitute a custom certificate evaluation process for the built-in Java behavior

idp.httpclient.connectionDisregardTLSCertificate

BooleanfalseWhether to ignore TLS certificates by default when loading an HTTPResource
idp.httpclient.connectionTimeoutInteger-1Default connection timeout for HTTPResource (-1 for none)
idp.httpclient.memorycaching.maxCacheEntriesInteger50Maximum number of cache entries when using the "shibboleth.MemoryCachingHttpClient" bean
idp.httpclient.memorycaching.maxCacheEntrySizeInteger1048576Maximum size of cache when using the "shibboleth.MemoryCachingHttpClient" bean
idp.httpclient.filecaching.maxCacheEntriesInteger100Maximum number of cache entries when using the "shibboleth.FileCachingHttpClient" bean
idp.httpclient.filecaching.maxCacheEntrySizeInteger10485760Maximum size of cache when using the "shibboleth.FileCachingHttpClient" bean

idp.httpclient.filecaching.cacheDirectory

File pathDirectory location of cache when using the "shibboleth.FileCachingHttpClient" bean

V2 Compatibility

A similar function was performed by the services.xml file in V2, but in V3 this file is now a native Spring bean file and the older services XML schema is not supported or used.

...