Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

To help orient you, a summary of the general function of each file follows along with a tip for when or why you might care about it. The order is alphabetic, not based on the frequency of use.

The "RL?" column notes which files can be reloadable, but not necessarily which ones are since that may depends on various properties in shibboleth2.xml

FileRL?PurposeTasks
Core Configuration
attribute-map.xmlY(*)Maps incoming SAML Attributes and/or NameID Formats into local variable/header names within the SP. The asterisk refers to the fact that this file should generally only be marked reloadable if you take care not to rely on HTTP request headers to consume the data.
  • Determining the data the SP consumes from IdPs and what to call it
attribute-policy.xmlYControls rules for accepting incoming data from IdPs. Comes with a useful set of default rules for certain kinds of attributes and usually isn't needed very often beyond that.
  • Adding additional "scoped" attributes
  • Rejecting certain attributes from certain IdPs (e.g. self-asserted names or email addresses)
  • Adding custom attributes only valid for a specific IdP


  • No labels