1 <?xml version="1.0" encoding="ISO-8859-1"?>
4 PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN"
5 "http://java.sun.com/dtd/web-app_2_3.dtd">
7 <!-- A Servlet deployment descriptor (WEB-INF/web.xml) file
8 defining Servlets, Filters, and Listeners for a /shibboleth
9 context containing both an IdP and an SP -->
12 <display-name>Shibboleth</display-name>
14 <param-name>OriginConfigFile</param-name>
15 <param-value>/conf/IdP.xml</param-value>
19 <param-name>ServiceProviderConfigFile</param-name>
20 <param-value>/conf/SP.xml</param-value>
24 <!-- Filter used if per-request thread local logging will
25 be enabled for this context -->
26 <filter-name>RequestLogFilter</filter-name>
28 edu.internet2.middleware.commons.log4j.RequestLoggingFilter
33 <!-- The /shibboleth context is not currently a meaningful
34 resource. However, there is an intent to expose
35 administrative pages and to restrict access to them
36 through Shibboleth. -->
37 <filter-name>ShibFilter</filter-name>
39 edu.internet2.middleware.shibboleth.resource.AuthenticationFilter
42 <param-name>shireURL</param-name>
44 http://shibdev.sample.edu:8080/shibboleth/Shibboleth.shire
48 <param-name>wayfURL</param-name>
49 <param-value>/shibboleth/HS</param-value>
52 <param-name>providerId</param-name>
54 http://shibdev.sample.edu/shibboleth
58 <param-name>requireId</param-name>
59 <param-value>*/text.txt</param-value>
63 <!-- Put your own Web-ISO Filter here. This Filter will be mapped
64 to front-end the IdP login Servlet -->
67 <filter-name>CAS Filter</filter-name>
68 <filter-class>edu.yale.its.tp.cas.client.filter.CASFilter</filter-class>
70 <param-name>edu.yale.its.tp.cas.client.filter.loginUrl</param-name>
71 <param-value>https://secure.its.yale.edu/cas/login</param-value>
74 <param-name>edu.yale.its.tp.cas.client.filter.validateUrl</param-name>
75 <param-value>https://secure.its.yale.edu/cas/serviceValidate</param-value>
78 <param-name>edu.yale.its.tp.cas.client.filter.serverName</param-name>
79 <param-value>shibdev.sample.edu:8080</param-value>
82 <param-name>edu.yale.its.tp.cas.client.filter.wrapRequest</param-name>
83 <param-value>true</param-value>
87 <!-- Frontend the IdP SSO Servlet with the institution's
88 locally selected WebISO Filter. -->
91 <filter-name>CAS Filter</filter-name>
92 <servlet-name>HS</servlet-name>
97 <!-- Frontend any protocol endpoints with the RequestLogFilter
98 if you want to gather per-request thread local log data
99 for subsequent request failure diagnosis. Note that
100 this will only gather data if the Log4J configuration
101 in effect for the request processing includes the
102 ThreadLocal Appender. -->
104 <filter-name>RequestLogFilter</filter-name>
105 <servlet-name>AssertionConsumer</servlet-name>
111 edu.internet2.middleware.shibboleth.log.LoggingContextListener
115 <!-- Servlets for Shibboleth/SAML Protocol endpoints -->
118 <servlet-name>HS</servlet-name>
119 <display-name>Shibboleth Handle Service</display-name>
121 edu.internet2.middleware.shibboleth.hs.HandleServlet
125 <!-- IdP AttributeAuthority -->
126 <servlet-name>AA</servlet-name>
127 <display-name>Shibboleth Attribute Authority</display-name>
129 edu.internet2.middleware.shibboleth.aa.AAServlet
133 <!-- SP Assertion Consumer -->
134 <servlet-name>AssertionConsumer</servlet-name>
135 <display-name>Authentication Assertion Consumer</display-name>
137 edu.internet2.middleware.shibboleth.serviceprovider.AuthenticationAssertionConsumerServlet
139 <load-on-startup>1</load-on-startup>
142 <!-- Servlets for administrative functions -->
144 <!-- Display the Request thread local log data
145 This Servlet should not be mapped if the RequestLogFilter
146 was not installed previously -->
147 <servlet-name>ShowLog</servlet-name>
148 <display-name>Return log data</display-name>
150 edu.internet2.middleware.commons.log4j.ShowLog
154 <!-- Mapping for SAML/Shibboleth protocol endpoints -->
156 <servlet-name>HS</servlet-name>
157 <url-pattern>/HS</url-pattern>
160 <servlet-name>AA</servlet-name>
161 <url-pattern>/AA</url-pattern>
164 <servlet-name>AssertionConsumer</servlet-name>
165 <url-pattern>*.SHIRE</url-pattern>
168 <!-- Mapping for administrative functions -->
170 <servlet-name>ShowLog</servlet-name>
171 <url-pattern>/showlog</url-pattern>
175 <extension>css</extension>
176 <mime-type>text/css</mime-type>