1 260
szerkesztés
Módosítások
a
→Session lifetime
The IdP can limit the maximum lifetime of the SP session by using the (optional) <code>SessionNotOnOrAfter</code> property in the SAML2 authentication statement. SAML1.1 does not have this feature, so '''you cannot limit the session lifetime for SPs using Shibboleth SSO protocol.'''
{| {{INFO_ENprettytable}}|This can be set in the <code>relying-party.xml</code> by specifying the number of milliseconds in the '''<code>maximumSPSessionLifetime</code>''' attribute of the '''<code>SAML2SSOProfile</code>''' configuration.}|}
== Required changes in the IdP ==
