Skip to content

Commit

Permalink
Merge pull request #129 from jkakavas/signing_sane_defaults
Browse files Browse the repository at this point in the history
Explicitly enable signature checking in example config as a sane default
  • Loading branch information
johanlundberg authored Aug 2, 2017
2 parents 57f2a26 + b3d57d2 commit 7d2f724
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion example/plugins/backends/saml2_backend.yaml.example
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@ config:
entityid: <base_url>/<name>/proxy_saml2_backend.xml
service:
sp:
want_response_signed: true
allow_unsolicited: true
endpoints:
assertion_consumer_service:
Expand All @@ -24,4 +25,4 @@ config:
- [<base_url>/<name>/disco, 'urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol']
name_id_format: 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient'
# disco_srv must be defined if there is more than one IdP in the metadata specified above
disco_srv: http://disco.example.com
disco_srv: http://disco.example.com

0 comments on commit 7d2f724

Please sign in to comment.