IdP encoding error

David Bantz dabantz at alaska.edu
Mon Feb 4 18:04:54 EST 2013 

On Mon, 4 Feb 2013, at 12:11 , Rod Widdowson <rdw at steadingsoftware.com> wrote:

> can you enter a JIRA case?

I confess to not knowing at all how to do that...

On Mon, 4 Feb 2013, at 12:11 , Rod Widdowson <rdw at steadingsoftware.com> wrote:

> WAG: Could you be encoding a non scoped attribute definition ( xsi:type = "simple") with a scoped attribute encoder?  


  <resolver:AttributeDefinition id="eduPersonPrincipalName" xsi:type="Script" xmlns="urn:mace:shibboleth:2.0:resolver:ad">
        <resolver:Dependency ref="myLDAP" />
        <resolver:Dependency ref="uasystemid" />
        <resolver:Dependency ref="uaadsystemid" />

        <resolver:AttributeEncoder xsi:type="SAML1ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:mace:dir:attribute-def:eduPersonPrincipalName" />

        <resolver:AttributeEncoder xsi:type="SAML2ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" friendlyName="eduPersonPrincipalName" />
        <Script>
        <![CDATA[
        importPackage(Packages.edu.internet2.middleware.shibboleth.common.attribute.provider);
        importPackage(Packages.org.slf4j);

        logger = LoggerFactory.getLogger("edu.internet2.middleware.shibboleth.resolver.Script.scriptTest");
        logger.debug("Starting eduPersonPrincipalName Attribute Resolver Script:");

        if (eduPersonPrincipalName == null) {
                eduPersonPrincipalName = new BasicAttribute("eduPersonPrincipalName");
        }

        if (typeof uasystemid != "undefined" && uasystemid != null && uasystemid.getValues().size() != 0){
            logger.debug("EDIR LDAP Values: " + uasystemid.getValues());
            for ( i = 0; i < uasystemid.getValues().size(); i++ ){
                value = uasystemid.getValues().get(i);
                eduPersonPrincipalName.getValues().add(new ScopedAttributeValue(value, "alaska.edu"));
            }
        }
        else {
            if (typeof uaadsystemid != "undefined" && uaadsystemid != null && uaadsystemid.getValues().size() != 0){
                logger.debug("AD LDAP Values: " + uaadsystemid.getValues());
                for ( i = 0; i < uaadsystemid.getValues().size(); i++ ){
                    value = uaadsystemid.getValues().get(i);
                    eduPersonPrincipalName.getValues().add(new ScopedAttributeValue(value, "alaska.edu"));
                }
            }
        }
        logger.debug("eduPersonPrincipalName values:" + eduPersonPrincipalName.getValues());
        logger.debug("Completed eduPersonPrincipalName Attribute Resolver Script");
        ]]>
        </Script>
    </resolver:AttributeDefinition>



-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20130204/81725d44/attachment.html

More information about the users mailing list