...
The second field is a 16-bit unsigned integer that is a reference to the index
attribute in the <md:ArtifactResolutionService>
element in the IdP's metadata. In the case of this back-door trick, you can define multiple file system locations that will be used to pass these messages in, and use the index field to identify which one is used.
...
In order for this mechanism to be supported, you must also turn on the artifactByFilesystem
property for the application and/or relying party. This allows you to selectively enable the feature for only the application, or specific IdP, involved.
Code Block | ||||||
---|---|---|---|---|---|---|
| ||||||
<ArtifactResolutionService index="1" Binding="urn:mace:shibboleth:2.0:bindings:File" Location="file:///opt/shibboleth-sp/var/artifacts" /> |
...