eduPersonAssurance and postAuthContext principals scripted attribute

[Cantor, Scott]

On 7/30/20, 4:14 PM, "users on behalf of Mak, Steve" <users-bounces at shibboleth.net on behalf of makst at upenn.edu> wrote:

>    This is what I wrote to get eduPersonAssurance working. Can anyone see if I did anything horribly wrong?

Strictly speaking I would probably test the input object's type with instanceof to make sure it's an AuthnContextClassRefPrincipal. Not that there's a real chance of a user by that name, but you take the point.

-- Scott