...
Name / Type | Default | Description |
---|---|---|
maximumSPSessionLifetime Duration | 0 | If non-zero, attempts to limit length of session with SP via |
skipEndpointValidationWhenSigned Boolean | false | Whether to skip validation of response location via metadata if the request was signed |
nameIDFormatPrecedence List<String> | Ordered list of NameID Format(s) to select for use, in the event that a relying party does not signal a preference. | |
ignoreScoping Boolean | false | Whether to ignore |
checkAddress Boolean | true | Whether to enforce consistency between the client's address and the value within an inbound assertion's |
proxiedAuthnInstant Boolean | true | Whether to pass through a proxied |
suppressAuthenticatingAuthorities suppressAuthenticatingAuthority 4.2 Boolean | false | Whether to prevent the insertion of |
maximumTimeSinceAuthn Duration | Limits the allowable time to accept a proxied authentication assertion based on its | |
authnContextComparison "exact", "minimum", "maximum", "better" | see below | Controls the comparison operator used when including |
authnContextTranslationStrategy | see below | Controls bidirectional translation of |
authnContextTranslationStrategyEx 4.2 | More advanced support for populating |
...