Release different value for affiliation based on service provider
cantor.2 at osu.edu
Tue Nov 13 19:48:02 EST 2012
On 11/13/12 6:17 PM, "john spence" <polymorp at gmail.com> wrote:
>For example, release "eduPersonScopedAffiliation" with a specific
>value of "Member" to some providers but release a more specific value
>such as "Staff" , "Student" to other providers.
>I would like to be able to do the same with "entitlement" as well so
>as not to overfill the attribute with information only a couple of
>specific providers are actually interested in.
Sometimes that's more of a filtering use case, but if you really want to
affect the values in the resolver, you would normally have to use a
scriptlet for that, unless the data were in a relational database that you
could query by entityID or something.
>I cannot see anyway to pass the service provider name/url to a
>database stored procedure which would ideally move the logic out of
>shibboleth or even just a way to say, use this source for the
>attribute if the provider is X otherwise use this source for the
>Can anyone point me in the right direction of an answer or tell me it
>just is not possible.
Well, the API for the SP name is requestContext.getPeerEntityId()
Could be used in a SQL template in a connector, or in a scriptlet.
More information about the users