You are here

saml_sp_drupal_login.schema.yml in SAML Service Provider 4.x

modules/saml_sp_drupal_login/config/schema/saml_sp_drupal_login.schema.yml

File

modules/saml_sp_drupal_login/config/schema/saml_sp_drupal_login.schema.yml
View source
  1. saml_sp_drupal_login.config:
  2. type: config_object
  3. label: 'Configuration'
  4. mapping:
  5. idp:
  6. type: sequence
  7. label: 'IdP'
  8. description: 'The IdP(s) which are enabled for login'
  9. sequence:
  10. type: string
  11. logout:
  12. type: boolean
  13. label: 'Single Logout'
  14. description: 'When logging out of the site also logout of the IdP'
  15. logged_in_redirect:
  16. type: string
  17. label: 'Logged in Redirect'
  18. description: 'If a user tries to authenticate again after they are already logged in redirect them to this path'
  19. update_email:
  20. type: boolean
  21. label: 'Update Email address'
  22. description: 'If an account can be found on the site but the e-mail address differs from the IdP update the email on record with the new address from the IdP.'
  23. update_language:
  24. type: boolean
  25. label: 'Update Language'
  26. description: 'If the account language of the site differs from that of the IdP update the site account to match.'
  27. no_account_authenticated_user_role:
  28. type: boolean
  29. label: 'Login users without a user account as an authenticated user.'
  30. description: 'If a user is authenticated by the SAML Service Provider but no matching account can be found the user will be logged in as an authenticated user. This will allow users to be authenticated to receive more permissions than an anonymous user but less than a user with any other role.'
  31. no_account_authenticated_user_account:
  32. type: integer
  33. label: 'Authenticated user account'
  34. description: 'This is the account with only the authenticated user role which a user is logged in as if no matching account exists. As this account will be used for all users make sure that this account has only the "Authenticated User" role.'
  35. force_authentication:
  36. type: boolean
  37. label: 'Force authentication'
  38. description: 'Users with a single sign-on session at the IdP are required to re-authenticate to log in here.'
  39. force_saml_only:
  40. type: boolean
  41. label: 'Force SAML Login'
  42. description: 'The User Login form will not be used, when an anonymous user goes to /user they will be automatically redirected to the SAML authentication page.'
  43. account_request_request_account:
  44. type: boolean
  45. label: 'Allow Account Request'
  46. description: 'Allow users who do not have an account on the site to request an account on the site.'