eduPersonTargetedID
Robert Lamothe
robert_lamothe at yahoo.com
Tue May 7 13:58:04 EDT 2019
Ok, how about this?
<resolver:DataConnector xsi:type="dc:ComputedId"
id="computedID"
generatedAttributeID="computedID"
sourceAttributeID="sAMAccountName"
salt="<salt value removed for security purposes">
<resolver:Dependency ref="myLDAP" />
</resolver:DataConnector>
I removed the salt value for security, but its 49 character random looking Alpha-Numeric value.
Regards-Bob
--
Bob Lamothe
robert_lamothe at yahoo.com
KB1BOB
603-918-6336
On Tuesday, May 7, 2019, 1:32:39 PM EDT, Peter Schober <peter.schober at univie.ac.at> wrote:
* Robert Lamothe <robert_lamothe at yahoo.com> [2019-05-07 18:30]:
> I'm pretty sure this is the default:
> <resolver:AttributeDefinition xsi:type="ad:SAML2NameID" id="eduPersonTargetedID"
> nameIdFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" sourceAttributeID="computedID">
> <resolver:Dependency ref="computedID" />
> <resolver:AttributeEncoder xsi:type="enc:SAML1XMLObject" name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" />
> <resolver:AttributeEncoder xsi:type="enc:SAML2XMLObject" name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" friendlyName="eduPersonTargetedID" />
> </resolver:AttributeDefinition>
Yes, that's the attribute definition. But that doesn't tell us what
data goes into the attribute: For that you'd need to look at (and/or
share) the referenced DataConnector or AttributeDefinition identified
by id="computedID" within your attribute resolver (and potentially
also /their/ dependencies).
-peter
--
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20190507/7dd03aa0/attachment.html>
More information about the users
mailing list