The <SecurityPolicies>
element is a container for one or more uniquely identified <Policy>
elements that control low-level security and profile processing performed by the SP.
Custom security policies can be defined at the level of a specific application or protocol endpoint, but in most cases, the default policy is appropriate for all typical exchanges.
<Policy>
Each policy contains a variety of loosely related settings and a configurable set of "rules" that implement particular protections and peer authentication mechanisms.
<Policy id="foo" validate="false"> <PolicyRule type="MessageFlow" checkReplay="true" expires="60"/> <PolicyRule type="ClientCertAuth" errorFatal="true"/> <PolicyRule type="XMLSigning" errorFatal="true"/> <PolicyRule type="SimpleSigning" errorFatal="true"/> <PolicyRule type="Conditions"/> </Policy> |
id
(XML ID)
validate
(boolean) (defaults to false)
<Rule>
(one or more)
Version 2.2 and Above
<PolicyRule>
(one or more)