eduPersonAssurance and postAuthContext principals scripted attribute

Cantor, Scott cantor.2 at
Thu Jul 30 20:15:21 UTC 2020

On 7/30/20, 4:14 PM, "users on behalf of Mak, Steve" <users-bounces at on behalf of makst at> wrote:

>    This is what I wrote to get eduPersonAssurance working. Can anyone see if I did anything horribly wrong?

Strictly speaking I would probably test the input object's type with instanceof to make sure it's an AuthnContextClassRefPrincipal. Not that there's a real chance of a user by that name, but you take the point.

-- Scott

More information about the users mailing list