SPv3: Catch-all / wildcard attribute mapping?
Cantor, Scott
cantor.2 at osu.edu
Thu Apr 30 12:21:08 EDT 2020
On 4/30/20, 12:15 PM, "users on behalf of Jesse Banning" <users-bounces at shibboleth.net on behalf of jbanning at oreilly.com> wrote:
> I wasn't able to find an answer in the SPv3 documentation or by searching mailing list archives or the web. I'm
> considering an external program to monitor the shibd logs and automatically create new mappings when "skipping
> unmapped SAML 2.0 Attribute" is logged. My intent would be to use the attribute name & nameformat from the
> assertion to make an identifier for each of these.
Proper SAML naming is URI-based, and there is no means of creating a viable mapping from that. Any way that worked would rely on approaches that are either illegal, or I would outright reject as a practice.
> Is there a way to do this using SP configuration rather than writing something to react to log entries?
That won't work either in the general case, so there is no way I know of period that doesn't make assumptions that I would not make.
-- Scott
More information about the users
mailing list