...
shibboleth.DefaultSigningCredential | Credential | Keypair used for signing, usually including a certificate |
shibboleth.DefaultEncryptionCredentials | List<Credential> | Collection of keypairs used to decrypt data sent by others (technically only the private key matters here) |
shibboleth.DefaultSecurityConfiguration | SecurityConfiguration | Default security configuration used by all profile beans |
shibboleth.SecurityConfiguration.SHA256 3.4 | SecurityConfiguration | Security configuration that directly incorporates the SHA-256 signing configuration |
shiibbolethshibboleth.SecurityConfiguration.SHA1 3.4 | SecurityConfiguration | Security configuration that directly incorporates the SHA-1 signing configuration |
shibboleth.SecurityConfiguration.CBC 3.4 | SecurityConfiguration | Security configuration that directly incorporates the AES-CBC encryption configuration |
shibboleth.SecurityConfiguration.GCM 3.4 | SecurityConfiguration | Security configuration that directly incorporates the AES-GCM encryption configuration |
shibboleth.SigningConfiguration.SHA256 | BasicSignatureSigningConfiguration | Signing confguration configuration that uses the SHA-256 digest algorithm |
shibboleth.SigningConfiguration.SHA1 | BasicSignatureSigningConfiguration | Signing confguration configuration that uses the SHA-1 digest algorithm |
shibboleth.EncryptionConfiguration.CBC 3.4 | EncryptionConfiguration | Encryption configuration that uses the AES-CBC encryption algorithm |
shibboleth.EncryptionConfiguration.GCM 3.4 | EncryptionConfiguration | Encryption configuration that uses the AES-GCM encryption algorithm |
shibboleth.ExplicitKeySignatureTrustEngine | ExplicitKeySignatureTrustEngine | Signature verifier that relies on explicit keys in metadata |
shibboleth.PKIXSignatureTrustEngine | PKIXSignatureTrustEngine | Signature verifier that validates certificates against PKIX rules in metadata |
shibboleth.ChainingSignatureTrustEngine | ChainingSignatureTrustEngine | Signature verifier that chains the previous two beans together |
shibboleth.ExplicitKeyX509TrustEngine 3.3 | Client certificate verifier that relies on explicit keys in metadata | |
shibboleth.PKIXX509TrustEngine | PKIXX509CredentialTrustEngine | Client certificate verifier that validates certificates against PKIX rules in metadata |
shibboleth.ChainingX509TrustEngine | ChainingTrustEngine | Client certificate verifier that chains the previous two beans together |
...