Author: buildbot
Date: Thu May 24 14:47:51 2012
New Revision: 818965
Log:
Production update by buildbot for cxf
Modified:
websites/production/cxf/content/cache/main.pageCache
websites/production/cxf/content/fediz-configuration.html
Modified: websites/production/cxf/content/cache/main.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/cxf/content/fediz-configuration.html
==============================================================================
--- websites/production/cxf/content/fediz-configuration.html (original)
+++ websites/production/cxf/content/fediz-configuration.html Thu May 24
14:47:51 2012
@@ -184,12 +184,16 @@ Finally, the audience URI is validated a
<div class="table-wrap">
<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1"
class="confluenceTh">XML element </th><th colspan="1" rowspan="1"
class="confluenceTh">Name </th><th colspan="1" rowspan="1"
class="confluenceTh">Use </th><th colspan="1" rowspan="1"
class="confluenceTh">Description</th></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> issuer </td><td colspan="1" rowspan="1"
class="confluenceTd"> Issuer URL </td><td colspan="1" rowspan="1"
class="confluenceTd"> Required </td><td colspan="1" rowspan="1"
class="confluenceTd">This URL defines the location of the IDP to whom
unauthenticated requests are redirected </td></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"> authenticationType </td><td colspan="1"
rowspan="1" class="confluenceTd"> Authentication Type </td><td colspan="1"
rowspan="1" class="confluenceTd"> Optional </td><td colspan="1" rowspan="1"
class="confluenceTd"> The authentication type defines what kind of
authentication is required. This infor
mation is provided in the SignInRequest to the IDP (parameter
<tt>wauth</tt>)<br clear="none">
-The WS-Federation standard defines a list of predefined URIs for wauth <a
shape="rect" class="external-link"
href="http://docs.oasis-open.org/wsfed/federation/v1.2/os/ws-federation-1.2-spec-os.html#_Toc223174997";
rel="nofollow">here</a>.</td></tr></tbody></table>
+The WS-Federation standard defines a list of predefined URIs for wauth <a
shape="rect" class="external-link"
href="http://docs.oasis-open.org/wsfed/federation/v1.2/os/ws-federation-1.2-spec-os.html#_Toc223174997";
rel="nofollow">here</a>.</td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> roleURI </td><td colspan="1" rowspan="1"
class="confluenceTd"> Role Claim URI </td><td colspan="1" rowspan="1"
class="confluenceTd"> Optional </td><td colspan="1" rowspan="1"
class="confluenceTd"> Defines the attribute name of the SAML token which
contains the roles </td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"> roleDelimiter </td><td colspan="1" rowspan="1"
class="confluenceTd"> Role Value Delimiter </td><td colspan="1" rowspan="1"
class="confluenceTd"> Optional </td><td colspan="1" rowspan="1"
class="confluenceTd"> There are different ways to encode multi value attributes
in SAML.
+<ul><li>Single attribute with multiple values</li><li>Several attributes with
the same name but only one value</li><li>Single attribute with single value.
Roles are delimited by <tt>roleDelimiter</tt></li></ul>
+</td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd">
claimTypesRequested </td><td colspan="1" rowspan="1" class="confluenceTd">
Requested claims </td><td colspan="1" rowspan="1" class="confluenceTd">
Optional </td><td colspan="1" rowspan="1" class="confluenceTd"> The claims
required by the Relying Party are listed here. Claims can be optional. If a
mandatory claim can't be provided by the IDP the issuance of the token should
fail </td></tr></tbody></table>
</div>
+
+
<h3><a shape="rect" name="FedizConfiguration-Advancedexample"></a>Advanced
example</h3>
<p>The following example defines the required claims and configure custom
callback handler to define some configuration values at runtime.</p>
