30 lines
1.2 KiB
YAML
30 lines
1.2 KiB
YAML
schemaVersion: "1.0"
|
|
pattern:
|
|
id: "4fcfadb4a5c946ead7e6e995"
|
|
className: "ch.nevis.admin.v4.plugin.nevisauth.patterns2.NevisAuthRealm"
|
|
name: "Auth_Realm_Main_IDP"
|
|
label: "AUTH"
|
|
notes: "Every normal authentication on the IdP starts with a SAMLRequest.\nIf such\
|
|
\ a request is present in the ianrgs, and another still ongoing (request.id in\
|
|
\ the session), we reset the state engine and start by processing that request."
|
|
properties:
|
|
authenticate:
|
|
- "pattern://68665057549fd887ea09fb86"
|
|
auth:
|
|
- "pattern://7022472ae407577ae604bbb8"
|
|
authParams:
|
|
- RecheckAuthentication: "On"
|
|
- RenewIdentification: "false"
|
|
- RenegotiateCookieOnAuthContinue: "false"
|
|
logrend:
|
|
- "pattern://097929211988398a87bcbb0c"
|
|
template: "res://4fcfadb4a5c946ead7e6e995#template"
|
|
labels: "res://4fcfadb4a5c946ead7e6e995#labels"
|
|
sessionTracking: "COOKIE"
|
|
cookieName: "agov"
|
|
initialSessionTimeout: "var://idp-authentication-session-timeout"
|
|
sessionTimeout: "30m"
|
|
langCookieDomain: "var://agov-language-cookie-domain"
|
|
resetAuthenticationCondition: "#{ (inargs.containsKey('SAMLRequest') and session.containsKey('ch.nevis.auth.saml.request.id'))\
|
|
\ ? 'restart' : '' }"
|