SAML Token Generation policy enables API proxies to generate SAML tokens for the XML requests. These tokens further enable backend services to apply security for authentication/authorization.
Figure 1: SAML Token Generation policy parameters
| Property | Description |
| Subject | The element about which an SAML assertion is made. |
| Issuer | The unique identifier of the identity provider. If the optional reference attribute is present, then the value of the Issuer will be assigned at runtime based on the specified variable. If the optional reference attribute is not present, then the value of the Issuer will be used. |
| Ignore Unresolved Variables | If any of the variables being used as part of the configuration are not present in the incoming message, this property is used to determine whether the condition needs to be ignored or treated as an error. When enabled, the flow continues as usual. Otherwise, an error is sent back to the client reporting that the property is missing. |
| Variable Reference Suffix | Short prefix for the variable where the "%" symbol is the default value. |
| Variable Reference Prefix | Short suffix for the variable where the "%" symbol is the default value. |
| Template | The text area to define parameters to generate the key. |
| Output Mode |
|
| Body XPath | Body XPath is a property that helps to identify the portion of the schema that defines the body of the message associated with the selected root Record node in an envelope schema. |
| Namespaces | Additional parameters required. |
| Sign | Digital Signature used for SAML assertion, which helps to preserve integrity. |
Overview
Content Tools
ThemeBuilder