...
policyId(string) (optional on 2.4+, else required for<ApplicationDefaults>, optional for<ApplicationOverride>)- References a policy defined in the
<SecurityPolicies>element. When omitted on Version 2.4 and above, the default policy is assumed.
- References a policy defined in the
requireAuthenticatedCipher(boolan) (defaults to false) (Version 2.5 and Above)- When true, the SP will refuse to decrypt assertions that are unprotected by a signature or an authenticated transport (e.g., back-channel TLS) unless the data is encrypted with a special type of cipher that includes built-in integrity protection to prevent chosen ciphertext attacks. At the present time, this will generally block use of encryption unless signed responses are enabled by an IdP.
homeURL(URL)- A location to send the browser to when a resource URL is required but cannot be determined (for example, following SSO when no local state information can be found). As of Version 2.2.1, this can be omitted and it will calculate the root of the site. In prior versions, leaving this out usually results in errors, but was defaulted to the literal value of "/".
...