Wt::Auth::Saml Namespace Reference

Namespace for the SAML SP implementation. More...

Classes
struct	Subject
	A SAML Subject (saml-core-2.0-os, section 2.4.1) More...
struct	Attribute
	A SAML Attribute (saml-core-2.0-os, section 2.7.3.1) More...
struct	Assertion
	Represents a SAML assertion (saml-core-2.0-os, section 2.3.3) More...
class	Process
	A SAML authentication process. More...
class	Service
	A minimal implementation of a SAML service provider. More...

Enumerations
enum class	SignaturePolicy { Unsafe , SignedResponse , SignedAssertion , SignedResponseAndAssertion }
	An enum describing how SAML responses should be signed. More...
enum class	AuthnContextComparison { Exact , Better , Minimum , Maximum }
	An enum describing the comparison attribute of the AuthnContext. More...

Detailed Description

Namespace for the SAML SP implementation.

Enumeration Type Documentation

AuthnContextComparison

enum Wt::Auth::Saml::AuthnContextComparison

strong

An enum describing the comparison attribute of the AuthnContext.

Wt/Auth/Saml/Service.h

Enumerator
Exact	Exact.
Better	Better.
Minimum	Minimum.
Maximum	Maximum.

SignaturePolicy

enum Wt::Auth::Saml::SignaturePolicy

strong

An enum describing how SAML responses should be signed.

Wt/Auth/Saml/Service.h

Note

Any signature that is present will still be checked, even if the signature policy does not demand that that signature be present.

Enumerator
Unsafe	Do not require any signatures. This may be useful for testing, but it is not recommended for production use. A SAML SP that does not check signatures is not a secure SAML SP.
SignedResponse	Require that the response is signed.
SignedAssertion	Require that the assertion is signed. This is less secure than SignedResponse. If you can configure your IdP to sign responses, you are recommended to do so rather than changing to SignedAssertion.
SignedResponseAndAssertion	Require that both the response and the assertion are signed.