ContextCheckPredicate
Joshua Brodie
josbrodie at gmail.com
Mon Jul 29 16:51:36 EDT 2019
This was puzzling me over the weekend on if possible, and how - stumped at
the moment.
We have a service that allows all employees -- and wish to restrict set of
users (say givenName = 'Alice') -- is this possible, any tips on how to add
this condition?
<bean id="ContextCheckPredicate" parent="shibboleth.Conditions.AND">
<constructor-arg>
<list>
<bean parent="shibboleth.Conditions.RelyingPartyId"
c:candidate="https://foo" />
<bean
class="net.shibboleth.idp.profile.logic.RegexAttributePredicate"
p:useUnfilteredAttributes="true"
p:attributeId="groupMembership"
p:pattern="^(.*?)ou=employee,dc=example,dc=edu" />
</list>
</constructor-arg>
</bean>
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20190729/591e229e/attachment.html>
More information about the users
mailing list