@@ -276,8 +276,8 @@ onelogin.saml2.idp.x509cert =
276276# onelogin.saml2.idp.certfingerprint =
277277# onelogin.saml2.idp.certfingerprint_algorithm = sha1
278278
279-
280- # # Security settings ##
279+ # Security settings
280+ #
281281
282282# Indicates that the nameID of the <samlp:logoutRequest> sent by this SP
283283# will be encrypted.
@@ -295,24 +295,24 @@ onelogin.saml2.security.logoutrequest_signed = false
295295# will be signed.
296296onelogin.saml2.security.logoutresponse_signed = false
297297
298- # Sign the Metadata
299- # Empty means no signature, or comma separate the keyFileName and the certFileName
300- onelogin.saml2.security.want_messages_signed =
301-
302298# Indicates a requirement for the <samlp:Response>, <samlp:LogoutRequest> and
303299# <samlp:LogoutResponse> elements received by this SP to be signed.
300+ onelogin.saml2.security.want_messages_signed = false
301+
302+ # Indicates a requirement for the <saml:Assertion> elements received by this SP to be signed.
304303onelogin.saml2.security.want_assertions_signed = false
305304
306305# Indicates a requirement for the Metadata of this SP to be signed.
307306# Right now supported null (in order to not sign) or true (sign using SP private key)
308- onelogin.saml2.security.sign_metadata =
307+ onelogin.saml2.security.sign_metadata =
309308
310309# Indicates a requirement for the Assertions received by this SP to be encrypted
311310onelogin.saml2.security.want_assertions_encrypted = false
312311
313312# Indicates a requirement for the NameID received by this SP to be encrypted
314313onelogin.saml2.security.want_nameid_encrypted = false
315314
315+
316316# Authentication context.
317317# Set Empty and no AuthContext will be sent in the AuthNRequest,
318318# Set comma separated values urn:oasis:names:tc:SAML:2.0:ac:classes:urn:oasis:names:tc:SAML:2.0:ac:classes:Password
0 commit comments