HTTP_REMORTUSER/Nameid
Cantor, Scott
cantor.2 at osu.edu
Mon Dec 15 14:25:00 EST 2014
On 12/15/14, 7:19 PM, "Senthil Ramiah" <sramiah at aileronconsulting.com>
wrote:
>
>We are currently using the latest Shibboleth SP running on IIS. The
>HTTP_REMOTEUSER seems to have a value that has the following format.
>
><entityId of Idp>!<entityId of SP>!Nameid
>
>For example,
>https://xyzidp.com/adfs/services/trust!https://abcsp.com/shibtest/!999999
That's a SAML persistentID, and the value alone isn't useful without the
qualifiers. The value is a triple, however it's pickled/serialized.
>Is there anyway to get just the nameid (e.g. 999999).
How you format the triple is configured in the decoder rule in the
attribute-map file, but that's generally an incorrect thing to do.
-- Scott
More information about the users
mailing list