BaseID Name Identifiers

[Ignacio Amoeiro Bosch]

Ok, thank for the clarification. I  already checked the SAML core but didn't understand it completely

Regards

-----Mensaje original-----
De: users <users-bounces at shibboleth.net> En nombre de Peter Schober
Enviado el: jueves, 14 de mayo de 2020 10:59
Para: users at shibboleth.net
Asunto: Re: BaseID Name Identifiers

* Ignacio Amoeiro Bosch <ignacio.amoeiro at extern.ibsalut.es> [2020-05-14 09:10]:
> Does Shibboleth supoprt BaseID Name Identifiers?

Looking at SAML 2.0 core, section 2.2.1:

  "The <BaseID> element is an extension point that allows applications
  to add new kinds of identifiers. Its BaseIDAbstractType complex type
  is abstract and is thus usable only as the base of a derived type."

that doesn't sound to me like you could use that "as is" as there's no fixed contend model defined. ("usable only as the base of a derived type").
As such I can't imagine any software including "support" for that out of the box in a meaningful way.

> Or is equivalent to NameID?

No, though NameIDs (and the NameIDType) are based on the abstract BaseID type, quoting from section 2.2.2:

  "The NameIDType complex type is used when an element serves to
  represent an entity by a string-valued name. It is a more restricted
  form of identifier than the <BaseID> element and is the type
  underlying boththe <NameID> and <Issuer> elements."

I.e., NameIDs have string values and are fully defined by SAML core.
BaseIDs have an abstract and complex type, with no standardised content anyone could implement support for, AFAIU.

-peter
--
For Consortium Member technical support, see https://ddec1-0-en-ctp.trendmicro.com:443/wis/clicktime/v1/query?url=https%3a%2f%2fwiki.shibboleth.net%2fconfluence%2fx%2fcoFAAg&umid=e2840aaf-5ec2-43f5-8535-b79dddae6d8f&auth=1c980b950b810d2ebe959a136e6fc6796ec23183-85936b2425108f4e5c71834f05268b6916177a6c
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net