Blitz Identity Provider domain#
You can change the Blitz Identity Provider domain by editing domain settings configuration file in the blitz.prod.local.idp.net settings block.
Example of configuration:
"net" : {
"domain" : "demo.identityblitz.com"
}
If necessary, change the domain setting in blitz.prod.local.idp.lang in the portal-lang-cookie block.
The example of configuration file excerpt:
"lang" : {
…
"portal-lang-cookie" : {
"domain" : "identityblitz.com",
…
}
}
If necessary, you can change the path to applications (by default, applications are available using the /blitz path). You can edit the path in the play.conf configuration file. It is necessary to change the context parameter in the play.http block:
"http" : {
"context" : "/blitz",
...
}
Change the Blitz Identity Provider domain and path in the /blitz-config/saml/conf/relying-party.xml, /blitz-config/saml/metadata/idp-metadata.xml files.
An example of changing settings in relying-party.xml:
<?xml version="1.0" encoding="utf-8" standalone="yes"?>
<ns18:RelyingPartyGroup …>
<ns18:AnonymousRelyingParty
provider="https://demo.identityblitz.com/blitz/saml"
defaultSigningCredentialRef="IdPCredential"/>
<ns18:DefaultRelyingParty
provider="https://demo.identityblitz.com/blitz/saml"
defaultSigningCredentialRef="IdPCredential">
…
</ns18:DefaultRelyingParty>
…
</ns18:RelyingPartyGroup>
An example of changing settings in idp-metadata.xmll:
<?xml version="1.0" encoding="UTF-8"?>
<EntityDescriptor … entityID="https://demo.identityblitz.com/blitz/saml">
<IDPSSODescriptor …>
…
<ArtifactResolutionService
Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML1/SOAP/ArtifactResolution"
index="1"/>
<ArtifactResolutionService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/SOAP/ArtifactResolution"
index="2"/>
<SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/Redirect/SLO"
ResponseLocation="https://demo.identityblitz.com/blitz/saml/profile/SAML2/Redirect/SLO"/>
<SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Plain-Redirect"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/Redirect/Plain/SLO"
ResponseLocation=
"https://demo.identityblitz.com/blitz/saml/profile/SAML2/Redirect/Plain/SLO"/>
<SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/SOAP/SLO" />
…
<SingleSignOnService
Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest"
Location="https://demo.identityblitz.com/blitz/saml/profile/Shibboleth/SSO"/>
<SingleSignOnService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/POST/SSO"/>
<SingleSignOnService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/POST-SimpleSign/SSO"/>
<SingleSignOnService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/Redirect/SSO"/>
<SingleSignOnService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Plain-Redirect"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/Redirect/Plain/SSO"/>
</IDPSSODescriptor>
<AttributeAuthorityDescriptor …>
…
<AttributeService
Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML1/SOAP/AttributeQuery"/>
<AttributeService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
Location="https://demo.identityblitz.com/blitz/saml/profile/SAML2/SOAP/AttributeQuery"/>
…
</AttributeAuthorityDescriptor>
</EntityDescriptor>