"non-NameID-valued attribute" for hashed NameID
Cantor, Scott
cantor.2 at osu.edu
Fri Nov 18 14:53:44 GMT 2011
On 11/18/11 6:19 AM, "Peter Schober" <peter.schober at univie.ac.at> wrote:
>On a newly installed SP on RHEL6 (64-bit, from the OBS repo ) I'm
>trying to activate hashing of NameIDs in the attribute map, like I did
>on other SPs.
The hashing process is running at more or less the wrong layer to use it
for this purpose, it runs very early during decoding, so they're hashed by
the time you filter. The values get decoded into a string instead of a
NameID.
There's an open RFE to explicitly be able to post-process the NameID into
a hash.
The hash feature in the decoder was put there mainly to address keys.
-- Scott
More information about the users
mailing list