Change assertion expiry date?
Closed this issue · 3 comments
johakoch commented
Hi,
I would like to change the assertion expiry date created by the IdP. The value of saml:Assertion/saml:Conditions/@NotOnOrAfter
is currently about 5 minutes in the future. Is there a way to achieve this?
cuongluu8 commented
I had a similar request. I ended up overriding the config.php file
./saml-config.php:/var/www/simplesamlphp/config/config.php
Then in the config there is a session.duration
property which I changed.
johakoch commented
I don't think session.duration
is the property to change. Its value is
8 * (60 * 60), // 8 hours.
not 5 minutes.
johakoch commented
I could modify the assertion expiry date (@NotOnOrAfter
) by setting
'assertion.lifetime' => 3600,
in metadata/saml20-sp-remote.php.
However, I'm not sure whether this works with the version of simplesamlphp currently used in docker-test-saml-idp, because I updated it to 1.19.0 previously.