<PicketLinkxmlns="urn:picketlink:identity-federation:config:2.1"><PicketLinkSPxmlns="urn:picketlink:identity-federation:config:2.1"ServerEnvironment="tomcat"BindingType="REDIRECT"SupportsSignatures="true"LogOutResponseLocation="${idp-sig.url::http://localhost:8081/auth/realms/demo/protocol/saml}"><IdentityURL>${idp-sig.url::http://localhost:8081/auth/realms/demo/protocol/saml}
</IdentityURL><ServiceURL>${employee-sig.url::http://localhost:8081/employee-sig-front/}
</ServiceURL><KeyProviderClassName="org.picketlink.identity.federation.core.impl.KeyStoreKeyManager"><AuthKey="KeyStoreURL"Value="saml/signed-front-get/WEB-INF/keystore.jks" /><AuthKey="KeyStorePass"Value="store123" /><AuthKey="SigningKeyPass"Value="test123" /><AuthKey="SigningKeyAlias"Value="http://localhost:8080/employee-sig/" /><ValidatingAliasKey="localhost"Value="demo" /><ValidatingAliasKey="127.0.0.1"Value="demo" /></KeyProvider></PicketLinkSP><Handlersxmlns="urn:picketlink:identity-federation:handler:config:2.1"><Handlerclass="org.picketlink.identity.federation.web.handlers.saml2.SAML2LogOutHandler" /><Handlerclass="org.picketlink.identity.federation.web.handlers.saml2.SAML2AuthenticationHandler"><OptionKey="NAMEID_FORMAT"Value="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified"/></Handler><Handlerclass="org.picketlink.identity.federation.web.handlers.saml2.RolesGenerationHandler" /><Handlerclass="org.picketlink.identity.federation.web.handlers.saml2.SAML2SignatureGenerationHandler"><!--
This is a optional configuration. By default, method http://www.w3.org/2000/09/xmldsig#rsa-sha1
and digest http://www.w3.org/2000/09/xmldsig#sha1 are used. --><OptionKey="SIGN_METHOD"Value="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><OptionKey="SIGN_DIGEST"Value="http://www.w3.org/2001/04/xmlenc#sha256"/></Handler><Handlerclass="org.picketlink.identity.federation.web.handlers.saml2.SAML2SignatureValidationHandler" /></Handlers></PicketLink>