Hello Community,
I must say that my question are probably obvious for a lot of people but I was not able to find any answer. We are currently using ISAM (9.0.6) and TFIM (6.2.2) for federation management and I am working on TFIM migration to ISAM. I was reading the last Cookbook ( SAM906-FederationCookbook20190718.pdf , link :
https://community.ibm.com/HigherLogic/System/DownloadDocumentFile.ashx?DocumentFileKey=75e1aea2-96dc-96f1-4bf9-92c32f3dd048&forceDialog=0) and I had two questions about it.
1- On page 306, the following entries are suggested to be add in the eai-trigger-urls stanza :
trigger = /isam/sps/saml20idp/saml20/login*
trigger = /isam/sps/saml20idp/saml20/slo*
trigger = /isam/sps/saml20idp/saml20/soap*
trigger = /isam/sps/auth*
I can understand the login and the slo trigger but I must say I am not sure why adding a SOAP trigger in this case. What could be used for ?
2- Probably both questions are related, but we have the exact same "eai-trigger-urls" recommendations no matter if we are configuring a SP (page 306) or IDP (page 313) reverse proxy. Is SOAP really needed in SP scenario ?
Thank you very much, I must say that I followed the cookbook and everything is working flawlessly. I also note that I have the exact same configuration right now with ISAM/TFIM combo so it is working like this, I just really want to know why those settings are recommended.
Thank you very much,
------------------------------
Christophe Agostini
------------------------------