saml:ExpectedAuthnContextClassRef: Update documentation.

Thanks to Gyula Szabó for providing this patch. git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3032 44740490-163a-0410-bde0-09ae8108e29a

saml:ExpectedAuthnContextClassRef: Update documentation.
Thanks to Gyula Szabó for providing this patch. git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3032 44740490-163a-0410-bde0-09ae8108e29a
a65d6625 · Olav Morken · 8cf292df · a65d6625
Commit a65d6625 authored 13 years ago by Olav Morken
--- a/modules/saml/docs/authproc_expectedauthncontextclassref.txt
+++ b/modules/saml/docs/authproc_expectedauthncontextclassref.txt
 `saml:ExpectedAuthnContextClassRef`
 ===================

-SP side attribute filter for validate AuthnContextClassRef.
+SP side attribute filter to validate AuthnContextClassRef.

-This filter check the AuthnContextClassRef in the authnentication response, and accept or deny the access depend on the strength of authentication.
+This filter checks the AuthnContextClassRef in the authentication response, and accepts or denies the access depending on the provided strength measure of authentication from IdP.

-You can list the accepted authentitcation context values in the Service Provider configuration.
-If the given AuthnContextClassRef not match of any accepted value, the user redirected to the error page. It's useful to harmonize the SP's requested AuthnContextClassRef (another authproc filter)i, but you can accept more authentication strength level than what you requested.
+You can list the accepted authentitcation context values in the Service Provider configuration file.
+If the given AuthnContextClassRef does not match any accepted value, the user will be redirected to an error page. It's useful to harmonize the SP's requested AuthnContextClassRef (another authproc filter), but you can accept more authentication strength measures than you requested for.

 Examples
 --------

-  'authproc.sp' => array(
-    91 => array(
-      'class' => 'saml:ExpectedAuthnContextClassRef',
-      'accepted' => array(
-        'urn:oasis:names:tc:SAML:2.0:post:ac:classes:nist-800-63:3',
-        'urn:oasis:names:tc:SAML:2.0:ac:classes:Password',
+    'authproc.sp' => array(
+      91 => array(
+        'class' => 'saml:ExpectedAuthnContextClassRef',
+        'accepted' => array(
+          'urn:oasis:names:tc:SAML:2.0:post:ac:classes:nist-800-63:3',
+          'urn:oasis:names:tc:SAML:2.0:ac:classes:Password',
+        ),
      ),
    ),
-  ),