Versions Compared

Old Version 22

changes.mady.by.user trscavo@internet2.edu

Saved on

compared with

New Version 23

changes.mady.by.user trscavo@internet2.edu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Code Block
titleExample switching to SHA-256
<bean id="shibboleth.idp.ext.OpensamlCustomSecurityConfig"
    class="edu.internet2.middleware.shibboleth.idp.ext.securityconfig.OpensamlCustomSecurityConfigBean"
    depends-on="shibboleth.OpensamlConfig">

    <!-- Primaryprimary two neededalgorithms for use with RSA signing keys -->
    <property name="signatureAlgorithmRSA" value="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <property name="signatureReferenceDigestMethod" value="http://www.w3.org/2001/04/xmlenc#sha256"/>

    <!-- other signature algorithms for completeness use with other signing keys -->
    <property name="signatureAlgorithmDSA" value="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <property name="signatureAlgorithmEC" value="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <property name="signatureAlgorithmAES" value="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256"/>
    <property name="signatureAlgorithmDESede" value="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256"/>

 </bean>

...