3 SELECT evergreen.upgrade_deps_block_check('XXXX', :eg_version);
5 -- XXX Check perm number collisions, and adjust update_perm below if necessary!
6 INSERT INTO permission.perm_list (id,code,description) VALUES (627,'SSO_ADMIN','Modify patron SSO settings');
8 INSERT INTO config.org_unit_setting_type
9 ( name, grp, label, description, datatype, update_perm )
11 ('opac.login.shib_sso.enable',
13 oils_i18n_gettext('opac.login.shib_sso.enable', 'Enable Shibboleth SSO for the OPAC', 'coust', 'label'),
14 oils_i18n_gettext('opac.login.shib_sso.enable', 'Enable Shibboleth SSO for the OPAC', 'coust', 'description'),
16 ('opac.login.shib_sso.entityId',
18 oils_i18n_gettext('opac.login.shib_sso.entityId', 'Shibboleth SSO Entity ID', 'coust', 'label'),
19 oils_i18n_gettext('opac.login.shib_sso.entityId', 'Which configured Entity ID to use for SSO when there is more than one available to Shibboleth', 'coust', 'description'),
21 ('opac.login.shib_sso.logout',
23 oils_i18n_gettext('opac.login.shib_sso.logout', 'Log out of the Shibboleth IdP', 'coust', 'label'),
24 oils_i18n_gettext('opac.login.shib_sso.logout', 'When logging out of Evergreen, also force a logout of the IdP behind Shibboleth', 'coust', 'description'),
26 ('opac.login.shib_sso.allow_native',
28 oils_i18n_gettext('opac.login.shib_sso.allow_native', 'Allow both Shibboleth and native OPAC authentication', 'coust', 'label'),
29 oils_i18n_gettext('opac.login.shib_sso.allow_native', 'When Shibboleth SSO is enabled, also allow native Evergreen authentication', 'coust', 'description'),
31 ('opac.login.shib_sso.evergreen_matchpoint',
33 oils_i18n_gettext('opac.login.shib_sso.evergreen_matchpoint', 'Evergreen SSO matchpoint', 'coust', 'label'),
34 oils_i18n_gettext('opac.login.shib_sso.evergreen_matchpoint',
35 'Evergreen-side field to match a patron against for Shibboleth SSO. Default is usrname. Other reasonable values would be barcode or email.',
36 'coust', 'description'),
38 ('opac.login.shib_sso.shib_matchpoint',
40 oils_i18n_gettext('opac.login.shib_sso.shib_matchpoint', 'Shibboleth SSO matchpoint', 'coust', 'label'),
41 oils_i18n_gettext('opac.login.shib_sso.shib_matchpoint',
42 'Shibboleth-side field to match a patron against for Shibboleth SSO. Default is uid; use eppn for Active Directory', 'coust', 'description'),