usage "AttributeRequesterString" in attribute-resolver.xml
Björn Urbanek
bjoernurbanek at gmx.de
Fri Oct 25 08:56:23 EDT 2013
Hello!
I want to use the "AttributeRequesterString" Variable for publish an
attribute based on this string to create a own SAML attribute with the
following syntax:
username at requester
Currently I have only found a usage case of the "AttributeRequesterString"
in the attribute-filter.xml.
A part of the attribute-resolver.xml :
<!-- The username is my sAMAaccountname of my LDAP directory. -->
<resolver:AttributeDefinition
id="eduPersonPrincipalName"
xsi:type="Simple"
xmlns="urn:mace:shibboleth:2.0:resolver:ad"
sourceAttributeID="sAMAccountName">
<resolver:Dependency ref="myLDAP" />
<resolver:AttributeEncoder
xsi:type="SAML1String"
xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
name="urn:mace:dir:attribute-def:eduPersonPrincipalName" />
<resolver:AttributeEncoder
xsi:type="SAML2String"
xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"
friendlyName="eduPersonPrincipalName" />
</resolver:AttributeDefinition>
<!-- Try to get the RequesterString -->
<resolver:AttributeDefinition id="SPrequester" xsi:type="ad:Simple">
<resolver:AttributeEncoder xsi:type="SAML2String"
xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
name="AttributeRequesterString" />
</resolver:AttributeDefinition>
A part of the attribute-filter.xml:
<!-- try to publish the requester for testing -->
<afp:AttributeFilterPolicy id="SPrequester">
<afp:PolicyRequirementRule xsi:type="basic:ANY" />
<afp:AttributeRule attributeID="SPrequester">
<afp:PermitValueRule xsi:type="basic:ANY"/>
</afp:AttributeRule>
</afp:AttributeFilterPolicy>
Currently no value will be published.
(How) Can I use the requester attribute or a similar value to create a new
attribute for publishing to the SP?
Many thanks so far!
Best regards
Bjoern
More information about the users
mailing list