Merge remote branch 'tags/2.3.4'
[java-idp.git] / src / installer / resources / conf-tmpl / handler.xml
index 31b9949..1cb0751 100644 (file)
         <ph:RequestPath>/SAML2/Redirect/SSO</ph:RequestPath>
     </ph:ProfileHandler>
 
+    <ph:ProfileHandler xsi:type="ph:SAML2SLO" 
+                    inboundBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+                    outboundBindingEnumeration="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect">
+        <ph:RequestPath>/SAML2/Redirect/SLO</ph:RequestPath>
+    </ph:ProfileHandler>
+
+    <ph:ProfileHandler xsi:type="ph:SAML2SLO" 
+                    inboundBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+                    outboundBindingEnumeration="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST">
+        <ph:RequestPath>/SAML2/POST/SLO</ph:RequestPath>
+    </ph:ProfileHandler>
+
+    <ph:ProfileHandler xsi:type="ph:SAML2SLO" 
+                    inboundBinding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+                    outboundBindingEnumeration="urn:oasis:names:tc:SAML:2.0:bindings:SOAP">
+        <ph:RequestPath>/SAML2/SOAP/SLO</ph:RequestPath>
+    </ph:ProfileHandler>
+    
     <ph:ProfileHandler xsi:type="ph:SAML2SSO" inboundBinding="urn:mace:shibboleth:2.0:profiles:AuthnRequest" 
                        outboundBindingEnumeration="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign
                                                    urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
@@ -79,9 +97,9 @@
     </ph:ProfileHandler>
     
     <!-- Login Handlers -->
-    <ph:LoginHandler xsi:type="ph:RemoteUser">
+    <!-- <ph:LoginHandler xsi:type="ph:RemoteUser">
         <ph:AuthenticationMethod>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</ph:AuthenticationMethod>
-    </ph:LoginHandler>
+    </ph:LoginHandler>-->
     
     <!-- Login handler that delegates the act of authentication to an external system. -->
     <!-- This login handler and the RemoteUser login handler will be merged in the next major release. -->
     </ph:LoginHandler>
     -->
     
-    <!--  Username/password login handler -->
-    <!-- 
+    <!--  Username/password login handler -->   
     <ph:LoginHandler xsi:type="ph:UsernamePassword" 
                   jaasConfigurationLocation="file://$IDP_HOME$/conf/login.config">
         <ph:AuthenticationMethod>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</ph:AuthenticationMethod>
     </ph:LoginHandler>
-    -->
+    
     
     <!-- 
         Removal of this login handler will disable SSO support, that is it will require the user to authenticate