...
- includeAttributeStatement - a boolean flag indicating whether to include an attribute statement in addition to the authentication statement, defaults to true
- outboundArtifactType - Default artifact type used when sending responses via artifact, defaults to 4
- assertionLifetime - The lifetime, in milliseconds, for issued assertions, defaults to 300000 (5 minutes)
- localityAddress - IP address to use in the authentication statement's
SubjectLocality
element, defaults to the IP address of the client - localityDNSName - DNS name to use in the authentication statements
SubjectLocality
element - assertionProxyCount - A non-negative integer used to populate the
Count
attribute in the assertion'sProxyRestriction
element, defaults to 0 - includeConditionsNotBefore - (V2.4.0+) Include a
NotBefore
timestamp in the assertions' validity conditions, defaults to true - skipEndpointValidationWhenSigned - (V2.4.0+) Allows the IdP to skip the requirement for response endpoints to be registered in SP metadata if the SAML request is signed by the SP, defaults to false
- signResponses - see Configuring XML Signature and Encryption
- signAssertions - see Configuring XML Signature and Encryption
- signRequests - see Configuring XML Signature and Encryption
- encryptAssertions - see Configuring XML Signature and Encryption
- encryptNameIds - see Configuring XML Signature and Encryption
...