Versions Compared

Old Version 1

changes.mady.by.user Scott Cantor

Saved on

compared with

New Version Current

changes.mady.by.user Scott Cantor

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Note

This feature requires V4.3+ of the IdP software and is unreleased.

This interface provides a mechanism managing the contents of an instance of the RevocationCache class, which in turn is layered on a pluggable StorageService. The most common use for this interface is to manage revocation records in support of the AdministrativeLogout feature, but it is generic and can be used to manage records in other RevocationCache instances, such as those used in the OIDC OP plugin.

...

Expand
titleFlow Descriptor XML

To replace the internally defined flow descriptor bean, the following XML is required:

Code Block
<util:list id="shibboleth.AvailableAdminFlows">
 
    <bean parent="shibboleth.AdminFlow"
        c:id="http://shibboleth.net/ns/profiles/revocation"
        p:loggingId="%{idp.revocation.logging:Revocation}"
        p:policyName="%{idp.revocation.accessPolicy:AccessDenied}"
        p:nonBrowserSupported="%{idp.revocation.nonBrowserSupported:false}"
        p:authenticated="%{idp.revocation.authenticated:false}"
        p:resolveAttributes="%{idp.l.resolveAttributes:false}" />
 
</util:list>

In older versions and upgraded systems, this list is defined in conf/admin/general-admin.xml. In V4.1+, no No default version of the list is provided and it may simply be placed in conf/global.xml if needed.

...