Enable validation of attribute files by default.

author Scott Cantor <cantor.2@osu.edu>

Tue, 27 Oct 2009 01:45:02 +0000 (01:45 +0000)

committer Scott Cantor <cantor.2@osu.edu>

Tue, 27 Oct 2009 01:45:02 +0000 (01:45 +0000)
author Scott Cantor <cantor.2@osu.edu>
Tue, 27 Oct 2009 01:45:02 +0000 (01:45 +0000)
committer Scott Cantor <cantor.2@osu.edu>
Tue, 27 Oct 2009 01:45:02 +0000 (01:45 +0000)
diff --git a/configs/shibboleth2.xml b/configs/shibboleth2.xml

index 4a17f93..388776f 100644 (file)
--- a/configs/shibboleth2.xml
+++ b/configs/shibboleth2.xml
@@ -232,13 +232,13 @@
          </TrustEngine>
  
          <!-- Map to extract attributes from SAML assertions. -->
-        <AttributeExtractor type="XML" path="attribute-map.xml"/>
+        <AttributeExtractor type="XML" validate="true" path="attribute-map.xml"/>
          
          <!-- Use a SAML query if no attributes are supplied during SSO. -->
          <AttributeResolver type="Query"/>
  
          <!-- Default filtering policy for recognized attributes, lets other data pass. -->
-        <AttributeFilter type="XML" path="attribute-policy.xml"/>
+        <AttributeFilter type="XML" validate="true" path="attribute-policy.xml"/>
  
          <!-- Simple file-based resolver for using a single keypair. -->
          <CredentialResolver type="File" key="sp-key.pem" certificate="sp-cert.pem"/>
author	Scott Cantor <cantor.2@osu.edu>
	Tue, 27 Oct 2009 01:45:02 +0000 (01:45 +0000)
committer	Scott Cantor <cantor.2@osu.edu>
	Tue, 27 Oct 2009 01:45:02 +0000 (01:45 +0000)