SAML
These properties are required when com.unraveldata.login.mode=saml.
Property/Description | Set by user | Unit | Default |
|---|---|---|---|
com.unraveldata.login.saml.config Fully qualified path to saml configuration file. | Optional | string (path) | - |
com.unraveldata.login.admins.saml.groups Grants read/write admin access to an AD user who belongs to a specified group. Value: a comma separated list of groups. | c | - | |
com.unraveldata.login.admins.readonly.saml.groups Grants read-only admin access to an AD user who belongs to a specified group. Value: a comma separated list of groups. | CSL | - |
Note
These properties are sent in the login.saml.config file that specified by com.unraveldata.login.saml.config.
Property/Description | Set by user | Unit | Default |
|---|---|---|---|
entryPoint Identity provider entry point, It must be specified in order to be spec-compliant when the request is signed. Example: "http://c24.unravel.com:9080/simplesaml/saml2/idp/SSOService.php" | Optional | - | |
issuer Issuer string to supply to identity provider (Environment name). Should match the name configured in ldp. Example: “Congo24”, “Localhost” , | Optional | - | |
cert IDP's public signing certificate. Example: Idp Cert String | Optional | - | |
cert IDP's public signing certificate. Example: Idp Cert String | Optional | - | |
unravel_mapping Mapping SAML attributes to Unravel attributes. Specific to unravel Integration. Example:
{
"username":"userid",
"groups":"ds_groups"
}
| - |