NameID configuration per relying party

[Cantor, Scott]

> I can't quite piece together all of the disparate wiki pages that deal with persistent
> NameID generation and relying party configuration well enough to come up
> with a complete solution.

"Persistent" in SAML means pairwise. I don't think you are clear here about what you really need to do.

> ...and based on that wiki page, it seems as though I should use the urn:oid
> for campusPermanentId in the p:format field and the attribute I'm pulling
> from our LDAP query in the p:attributeSourceIds field, but I'm not sure which
> configuration file this is supposed to go into. Does this go in the saml-
> nameid.xml file?

If there's an example you're looking at that doesn't say outright what file it's referring to, you can either fix that yourself if you care to or report it in JIRA as a documentation bug. That is always the intention with any examples, they're not just meant to be absent of any context for what file they're talking about. I'll look at the NameID pages and see if I spot anything.

But no, I doubt this is correct. A "persistent" NameID has its own Format in SAML, you don't change it to something else. Do you want "persistent" or do you want a "custom" Format? That's a very different process.

>  Is there anything else I would need to configure aside from
> this bean in order to release campusPermanentId to this RP as the NameID in
> the SAML assertion's subject?

You always have to trigger Format selection. That is a separate task from defining how a particular Format is to be generated. That is documented in detail in the NameID generation page.

-- Scott