Page tree

The Shibboleth 2.x software has reached its End of Life and is no longer supported. This documentation is available for historical purposes only. See the IDP30 and SP3 wiki spaces for current documentation on the supported versions.

Skip to end of metadata
Go to start of metadata

The <RuleRegex> element defines a specific access control requirement in the form of a regular expression.

Attributes

  • require (string)
    • One of a set of predefined "aliases", or the ID/alias of an attribute to examine. The predefined aliases are:
      • valid-user
        • A rule that requires an authenticated session, but nothing else.
      • user
        • A rule based on the REMOTE_USER identity for the request.
      • authnContextClassRef
        • A rule based on the SAML authentication context class or method asserted by the IdP.
      • authnContextDeclRef
        • A rule based on the SAML authentication context declaration asserted by the IdP.
  • ignoreCase (boolean) (defaults to false)
    • If true, the case-ignoring option is set for the regular expression engine.
    • Deprecated from version 2.6

Version 2.6 and Above

  • caseSensitive (boolean) (defaults to true).
    • If false, the case-ignoring option is set for the regular expression engine. 

Element Content

The element's content consists of a single regular expression to use.

  • No labels