...
<DiscoveryFilter> (zero or more)- Specifies a whitelist or blacklist to apply to the entities in the metadata for purposes of the JSON discovery feed optionally produced by the plugin. Any entities not in the feed are still included in all other uses of the metadata.
type ("Whitelist" or "Blacklist")- Required attribute, specifies what type of filtering to apply.
matcher (string)- Required attribute specifying a type of EntityMatcher to use in evaluating the entities in the feed. Other content will be included as specified by the type of plugin.
| Anchor |
|---|
| DiscoveryFilter |
|---|
| DiscoveryFilter |
|---|
|
Example
Example <MetadataProvider> with <DiscoveryFilter> that applies a blacklist to entities in the metadata for purposes of the JSON discovery feed optionally produced by the plugin. This blacklist is based on the presence of the http://refeds.org/category/hide-from-discovery entity attribute.
| Code Block |
|---|
|
<MetadataProvider type="XML" uri="http://federation.org/federation-metadata.xml"
backingFilePath="federation-metadata.xml" reloadInterval="7200">
<MetadataFilter type="RequireValidUntil" maxValidityInterval="2419200"/>
<MetadataFilter type="Signature" certificate="fedsigner.pem"/>
<DiscoveryFilter type="Blacklist" matcher="EntityAttributes" trimTags="true"
attributeName="http://macedir.org/entity-category"
attributeNameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"
attributeValue="http://refeds.org/category/hide-from-discovery" />
</MetadataProvider> |
| Anchor |
|---|
| dynamic-metadata-provider |
|---|
| dynamic-metadata-provider |
|---|
|
...