You are here

Home » API reference » SAML Service Provider 8.3

saml_sp_drupal_login.schema.yml in SAML Service Provider 8.3

Same filename and directory in other branches
  1. 8.2 modules/saml_sp_drupal_login/config/schema/saml_sp_drupal_login.schema.yml
  2. 4.x modules/saml_sp_drupal_login/config/schema/saml_sp_drupal_login.schema.yml
  3. 3.x modules/saml_sp_drupal_login/config/schema/saml_sp_drupal_login.schema.yml
modules/saml_sp_drupal_login/config/schema/saml_sp_drupal_login.schema.yml

File

modules/saml_sp_drupal_login/config/schema/saml_sp_drupal_login.schema.yml
View source 
  1. saml_sp_drupal_login.config:

  2.   type: config_object

  3.   label: 'Configuration'

  4.   mapping:

  5.     idp:

  6.       type: sequence

  7.       label: 'IdP'

  8.       description: 'The IdP(s) which are enabled for login'

  9.       sequence:

  10.         type: string

  11.     logout:

  12.       type: boolean

  13.       label: 'Single Logout'

  14.       description: 'When logging out of the site also logout of the IdP'

  15.     logged_in_redirect:

  16.       type: string

  17.       label: 'Logged in Redirect'

  18.       description: 'If a user tries to authenticate again after they are already logged in redirect them to this path'

  19.     update_email:

  20.       type: boolean

  21.       label: 'Update Email address'

  22.       description: 'If an account can be found on the site but the e-mail address differs from the IdP update the email on record with the new address from the IdP.'

  23.     update_language:

  24.       type: boolean

  25.       label: 'Update Language'

  26.       description: 'If the account language of the site differs from that of the IdP update the site account to match.'

  27.     no_account_authenticated_user_role:

  28.       type: boolean

  29.       label: 'Login users without a user account as an authenticated user.'

  30.       description: 'If a user is authenticated by the SAML Service Provider but no matching account can be found the user will be logged in as an authenticated user. This will allow users to be authenticated to receive more permissions than an anonymous user but less than a user with any other role.'

  31.     no_account_authenticated_user_account:

  32.       type: integer

  33.       label: 'Authenticated user account'

  34.       description: 'This is the account with only the authenticated user role which a user is logged in as if no matching account exists. As this account will be used for all users make sure that this account has only the "Authenticated User" role.'

  35.     force_authentication:

  36.       type: boolean

  37.       label: 'Force authentication'

  38.       description: 'Users with a single sign-on session at the IdP are required to re-authenticate to log in here.'

  39.     force_saml_only:

  40.       type: boolean

  41.       label: 'Force SAML Login'

  42.       description: 'The User Login form will not be used, when an anonymous user goes to /user they will be automatically redirected to the SAML authentication page.'

  43.     account_request_request_account:

  44.       type: boolean

  45.       label: 'Allow Account Request'

  46.       description: 'Allow users who do not have an account on the site to request an account on the site.'