Versions Compared

Old Version 2

changes.mady.by.user Scott Cantor

Saved on

compared with

New Version Current

changes.mady.by.user Scott Cantor

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

JAAS has its own configuration format (see here). By default, the named application configuration used is called "ShibUserPassAuth". This can be changed using theĀ shibboleth.authn.JAAS.LoginConfigNames bean (V4.0) or the idp.authn.JAAS.loginConfigNames property (V4.1+), or turned into a list of more than one configuration, with each one tried in series until a success. This is equivalent to the JAAS keyword "sufficient".

...

Expand
titleBeans

The following are placeholders that may be defined in authn/password-authn-config.xml for advanced control over JAAS configuration use. These are alternatives to the typical cases addressed by simple properties.

Bean ID

Type

Description

shibboleth.authn.JAAS.LoginConfigurations

Collection<Pair<String,Collection<Principal>>>

Static list of JAAS application configuration names along with mappings to custom Principal objects

shibboleth.authn.JAAS.LoginConfigStrategy

Function<Collection<Pair<String,Subject>>>

For advanced use, you can inject a function to supply at runtime the information that the previous bean would supply statically

...