Relying Party Shibboleth SSO Profile Configuration
This profile configuration enables and configures the Shibboleth SSO profile. This is the profile used by Shibboleth 1.X allowing an SP to solicit an authentication response from the IdP.
This profile is configured by adding the
<ProfileConfiguration xsi:type="saml:ShibbolethSSOProfile" /> element to a
RelyingParty definition. This element supports the following basic attributes:
- includeAttributeStatement - (optional) a boolean flag indicating whether to include an attribute statement in addition to the authentication statement, defaults to false
The Shibboleth SSO profile configuration supports the following advanced configuration attributes:
In addition, the Shibboleth SSO profile configuration element supports one child element:
<Audience> whose content is used to populate the
<Audience> elements of the
<AudienceRestrictionCondition> element. This element may appear any number of times, one for each audience.