43 lines
3.8 KiB
XML
43 lines
3.8 KiB
XML
<AuthState name="${state.entry}" class="ch.nevis.esauth.auth.states.scripting.ScriptState" final="false" resumeState="true">
|
|
<ResultCond name="processResponse" next="${state.entry}_serviceProvider"/>
|
|
<Response value="AUTH_CONTINUE">
|
|
<Gui name="AuthErrorDialog"/>
|
|
<Gui name="op_mock_me_gui" label="AGOV MOCK me">
|
|
<GuiElem name="lasterror" type="error" label="${notes:lasterrorinfo}" value="${notes:lasterror}" optional="true"/>
|
|
<GuiElem name="operation" type="text" label="operation" value="${inctx|connection.actualURL|^https:\/\/[^\/]+\/mock-me\/(.+)$|$1}" optional="true"/>
|
|
<GuiElem name="subject" type="text" label="subject" value="${notes:saml.assertion.subject}" optional="true"/>
|
|
<GuiElem name="statusCode" type="text" label="statusCode" value="${notes:saml.response.statusCode}" optional="true"/>
|
|
<GuiElem name="authnContextClassRef" type="text" label="authnContextClassRef" value="${notes:saml.assertion.authnContextClassRef}" optional="true"/>
|
|
<GuiElem name="authenticatedWith" type="text" label="authenticatedWith" value="${notes|saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/authenticatedWith}" optional="true"/>
|
|
<GuiElem name="requestedRoleLevel" type="text" label="requestedRoleLevel" value="${notes|saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/requestedRoleLevel}" optional="true"/>
|
|
<GuiElem name="rpEntityId" type="text" label="rpEntityId" value="${notes|saml.attributes.http://schemas.agov.ch/ws/2023/09/identity/claim/rpEntityId}" optional="true"/>
|
|
<GuiElem name="allowedVerificationMethods" type="text" label="allowedVerificationMethods" value="${notes|saml.attributes.http://schemas.agov.ch/ws/2023/09/identity/claim/allowedVerificationMethods}" optional="true"/>
|
|
<GuiElem name="addressRequired" type="text" label="addressRequired" value="${notes|saml.attributes.http://schemas.agov.ch/ws/2023/09/identity/claims/addressRequired}" optional="true"/>
|
|
<GuiElem name="currentAgovAq" type="text" label="currentAgovAq" value="${notes|saml.attributes.http://schemas.agov.ch/ws/2023/11/identity/claims/currentAgovAq}" optional="true"/>
|
|
<GuiElem name="dateOfVerification" type="text" label="dateOfVerification" value="${notes|saml.attributes.http://schemas.agov.ch/ws/2023/05/identity/claims/qa/dateOfVerification}" optional="true"/>
|
|
<GuiElem name="currentIdVerification" type="text" label="currentIdVerification" value="${notes|saml.attributes.http://schemas.agov.ch/ws/2024/01/identity/claims/currentIdVerification}" optional="true"/>
|
|
<GuiElem name="back" type="button" label="submit.button.label" value="go"/>
|
|
</Gui>
|
|
</Response>
|
|
<property name="script" value="file:///var/opt/nevisauth/default/conf/mock-me-processing.groovy"/>
|
|
<property name="parameter.idp-sso-url" value="${param.idp-sso-url}"/>
|
|
<property name="parameter.idp-recovery-url" value="${param.idp-recovery-url}"/>
|
|
</AuthState>
|
|
<AuthState name="${state.entry}_serviceProvider" class="ch.nevis.esauth.auth.states.saml.ServiceProviderState" final="false" resumeState="false">
|
|
<ResultCond name="ok" next="${state.entry}"/>
|
|
<ResultCond name="default" next="${state.entry}"/>
|
|
<Response value="AUTH_ERROR">
|
|
<Gui name="AuthErrorDialog"/>
|
|
</Response>
|
|
<property name="consumerURL" value="${param.mock-me-acs-url}"/>
|
|
<property name="idpURL" value="${param.idp-sso-url}"/>
|
|
<property name="in.verify" value="Response Assertion"/>
|
|
<property name="in.prospectVerification" value="Response Assertion"/>
|
|
<property name="in.binding" value="internal"/>
|
|
<property name="in.internalBindingSource" value="${notes:SAMLResponse}"/>
|
|
<property name="in.audienceRegex" value="${param.mock-me-audienceRegex}"/>
|
|
<property name="in.audience.checkrequired" value="false"/>
|
|
<property name="in.max_age" value="30"/>
|
|
<property name="in.keystoreref" value="DefaultKeyStore"/>
|
|
<property name="out.binding" value="none"/>
|
|
</AuthState> |