keycloak-scim/topics/saml/java/general-config/idp_keys_subelement.adoc


===== IDP Keys subelement

The Keys sub element of IDP is only used to define the certificate or public key to use to verify documents signed by the IDP.
It is defined in the same way as the <<fake/../../../../saml/java/general-config/sp-keys.adoc#_saml-sp-keys,SP's Key's element>>.
But again, you only have to define one certificate or public key reference.

[source,xml]
----
       <IDP entityID="idp">
            ...
            <Keys>
                <Key signing="true">
                    <KeyStore resource="/WEB-INF/keystore.jks" password="store123">
                        <Certificate alias="demo"/>
                    </KeyStore>
                </Key>
            </Keys>
        </IDP>
----
initial saml 2016-06-02 16:07:45 +00:00
			`===== IDP Keys subelement`

			`The Keys sub element of IDP is only used to define the certificate or public key to use to verify documents signed by the IDP.`
fixes 2016-06-02 21:20:05 +00:00			`It is defined in the same way as the <<fake/../../../../saml/java/general-config/sp-keys.adoc#_saml-sp-keys,SP's Key's element>>.`
saml general config 2016-06-02 20:50:43 +00:00			`But again, you only have to define one certificate or public key reference.`

			`[source,xml]`
			`----`
			`<IDP entityID="idp">`
			`...`
			`<Keys>`
			`<Key signing="true">`
			`<KeyStore resource="/WEB-INF/keystore.jks" password="store123">`
			`<Certificate alias="demo"/>`
			`</KeyStore>`
			`</Key>`
			`</Keys>`
			`</IDP>`
			`----`