type="Bearer", this rule allows a SAML 2.0 assertion with the "bearer" subject confirmation method to be accepted when possible. Normally not used explicitly, this rule is applied automatically to any policy running inside an AssertionConsumerService that implements SAML 2.0 profiles that make use of this confirmation type.
When true, the enclosed
|boolean||true||When true, and the URL to which the assertion was submitted is available, the |
When true, and the identifier of a request to which the assertion was submitted as a response is available, the
In the Shibboleth SP, the request ID is not in fact ever available, so this setting doesn't have any effect either way.
|boolean||true||When true, the absence of an acceptable |