schemaVersion: "1.0"
pattern:
  id: "4fcfadb4a5c946ead7e6e995"
  className: "ch.nevis.admin.v4.plugin.nevisauth.patterns2.NevisAuthRealm"
  name: "Auth_Realm_Main_IDP"
  label: "AUTH"
  notes: "Every normal authentication on the IdP starts with a SAMLRequest.\nIf such\
    \ a request is present in the ianrgs, and another still ongoing (request.id in\
    \ the session), we reset the state engine and start by processing that request."
  properties:
    authenticate:
    - "pattern://68665057549fd887ea09fb86"
    auth:
    - "pattern://7022472ae407577ae604bbb8"
    authParams:
    - RecheckAuthentication: "On"
    - RenewIdentification: "false"
    - RenegotiateCookieOnAuthContinue: "false"
    logrend:
    - "pattern://097929211988398a87bcbb0c"
    template: "res://4fcfadb4a5c946ead7e6e995#template"
    labels: "res://4fcfadb4a5c946ead7e6e995#labels"
    sessionTracking: "COOKIE"
    cookieName: "agov"
    initialSessionTimeout: "var://idp-authentication-session-timeout"
    sessionTimeout: "30m"
    langCookieDomain: "var://agov-language-cookie-domain"
    resetAuthenticationCondition: "#{ (inargs.containsKey('SAMLRequest') and session.containsKey('ch.nevis.auth.saml.request.id'))\
      \ ? 'restart' : '' }"