internal/AdfsSamples/SuccessFactors.json
|
{
"AllowedAuthenticationClassReferences": [ ], "EncryptionCertificateRevocationCheck": 5, "PublishedThroughProxy": false, "SigningCertificateRevocationCheck": 5, "WSFedEndpoint": null, "AdditionalWSFedEndpoint": [ ], "ClaimsProviderName": [ ], "ClaimsAccepted": [ ], "EncryptClaims": true, "Enabled": true, "EncryptionCertificate": null, "Identifier": [ "https://www.successfactors.com/1234" ], "NotBeforeSkew": 0, "EnableJWT": false, "AlwaysRequireAuthentication": false, "Notes": null, "OrganizationInfo": "", "ObjectIdentifier": "d4202863-c732-ed11-a812-000d3a9bbe83", "ProxyEndpointMappings": { }, "ProxyTrustedEndpoints": [ ], "ProtocolProfile": "WsFed-SAML", "RequestSigningCertificate": [ ], "EncryptedNameIdRequired": false, "SignedSamlRequestsRequired": false, "SamlEndpoints": [ { "Binding": "POST", "BindingUri": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST", "Index": 0, "IsDefault": false, "Location": "https://www.sapsf.com/saml2/SAMLAssertionConsumer?company=1234", "Protocol": "SAMLAssertionConsumer", "ResponseLocation": null } ], "SamlResponseSignature": "AssertionOnly", "SignatureAlgorithm": "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256", "TokenLifetime": 0, "AllowedClientTypes": 6, "IssueOAuthRefreshTokensTo": 2, "RefreshTokenProtectionEnabled": true, "RequestMFAFromClaimsProviders": false, "ScopeGroupId": null, "Name": "SuccessFactors", "AutoUpdateEnabled": false, "MonitoringEnabled": false, "MetadataUrl": null, "ConflictWithPublishedPolicy": false, "IssuanceAuthorizationRules": "", "IssuanceTransformRules": "@RuleName = \"1sf\"\r\nc:[Type == \"http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname\", Issuer == \"AD AUTHORITY\"]\r\n =\u003e issue(store = \"Active Directory\", types = (\"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname\"), query = \";sAMAccountName;{0}\", param = c.Value);\r\n\r\n@RuleName = \"GivenName to Name ID\"\r\nc:[Type == \"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname\"]\r\n =\u003e issue(Type = \"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier\", Issuer = c.Issuer, OriginalIssuer = c.OriginalIssuer, Value = c.Value, ValueType = c.ValueType, Properties[\"http://schemas.xmlsoap.org/ws/2005/05/identity/claimproperties/format\"] = \"urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified\");\r\n\r\n", "DelegationAuthorizationRules": "", "LastPublishedPolicyCheckSuccessful": null, "LastUpdateTime": "\/Date(-2208988800000)\/", "LastMonitoredTime": "\/Date(-2208988800000)\/", "ImpersonationAuthorizationRules": "", "AdditionalAuthenticationRules": "", "AccessControlPolicyName": "Permit everyone for intranet access", "AccessControlPolicyParameters": null, "ResultantPolicy": { "IsParameterized": false, "Serialized": "\u003cPolicyMetadata xmlns:i=\"http://www.w3.org/2001/XMLSchema-instance\" xmlns=\"http://schemas.datacontract.org/2012/04/ADFS\"\u003e\r\n \u003cRequireFreshAuthentication\u003efalse\u003c/RequireFreshAuthentication\u003e\r\n \u003cIssuanceAuthorizationRules\u003e\r\n \u003cRule\u003e\r\n \u003cConditions\u003e\r\n \u003cCondition i:type=\"LocationCondition\"\u003e\r\n \u003cOperator\u003eEquals\u003c/Operator\u003e\r\n \u003cValues\u003e\r\n \u003cValue\u003eintranet\u003c/Value\u003e\r\n \u003c/Values\u003e\r\n \u003c/Condition\u003e\r\n \u003c/Conditions\u003e\r\n \u003c/Rule\u003e\r\n \u003c/IssuanceAuthorizationRules\u003e\r\n\u003c/PolicyMetadata\u003e", "Summary": "RequireFreshAuthentication:False\nIssuanceAuthorizationRules:\n{\r\n Permit users \n from \u0027intranet\u0027 location\r\n}", "ExtensionData": { } } } |