Versions Compared

Old Version 6

changes.mady.by.user Paul Scott

Saved on

compared with

New Version 7

changes.mady.by.user Leif Johansson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Organisationsnamn (LDAP-attrributet o)
  • Vedertagen förkortning av organisationsnamnet (LDAP-attrributet norEduOrgAcronym)
  • Namn på landet där organisationen har sitt säte (LDAP-attrributet co)
  • Förkortning enlgit ISO-3166 för landet där organisationen har sitt säte (LDAP-attrributet c)
  • Huvuddomän för organisationen i schacHomeOrganization

Konfiguration för Shibboleth 2.x SP

...

Code Block
<!-- Country name and country ISO-3166 code -->
<Attribute name="urn:mace:dir:attribute-def:co" id="friendlyCountryName"/>
<Attribute name="urn:mace:dir:attribute-def:c" id="countryName"/>
<Attribute name="urn:oid:0.9.2342.19200300.100.1.43" id="friendlyCountryName"/>
<Attribute name="urn:oid:2.5.4.6" id="countryName"/>
<Attribute name="urn:oid:1.3.6.1.4.1.25178.1.2.9" id="schacHomeOrganization"/>

Konfiguration för Shibboleth 2.x IdP

...

Code Block
<!-- Static data connector -->
<resolver:DataConnector id="staticAttributes" xsi:type="dc:Static" xmlns="urn:mace:shibboleth:2.0:resolver:dc">
    <Attribute id="o">
        <Value>Lärosäte X</Value>
    </Attribute>
    <Attribute id="norEduOrgAcronym">
        <Value>XX</Value>
    </Attribute>
    <Attribute id="c">
        <Value>SE</Value>
    </Attribute>
    <Attribute id="co">
        <Value>Sweden</Value>
    </Attribute>
    <Attribute id="schacHomeOrganization">
        <Value>domän.se</Value>
    </Attribute>
</resolver:DataConnector>

...

Code Block
<!-- Organizational name -->
<resolver:AttributeDefinition id="organizationName" xsi:type="Simple"
        xmlns="urn:mace:shibboleth:2.0:resolver:ad" sourceAttributeID="o">
    <resolver:Dependency ref="staticAttributes" />
    <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:mace:dir:attribute-def:o" />
    <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:oid:2.5.4.10" friendlyName="o" />
</resolver:AttributeDefinition>

<!-- Organizational acronym -->
<resolver:AttributeDefinition id="norEduOrgAcronym" xsi:type="Simple"
        xmlns="urn:mace:shibboleth:2.0:resolver:ad" sourceAttributeID="norEduOrgAcronym">
    <resolver:Dependency ref="staticAttributes" />
    <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:mace:dir:attribute-def:norEduOrgAcronym" />
    <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:oid:1.3.6.1.4.1.2428.90.1.6" friendlyName="norEduOrgAcronym" />
</resolver:AttributeDefinition>

<!-- Country name -->
<resolver:AttributeDefinition id="friendlyCountryName" xsi:type="Simple"
        xmlns="urn:mace:shibboleth:2.0:resolver:ad" sourceAttributeID="co">
    <resolver:Dependency ref="staticAttributes" />
    <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:mace:dir:attribute-def:co" />
    <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:oid:0.9.2342.19200300.100.1.43" friendlyName="co" />
</resolver:AttributeDefinition>

<!-- Country ISO-3166 code -->
<resolver:AttributeDefinition id="countryName" xsi:type="Simple"
        xmlns="urn:mace:shibboleth:2.0:resolver:ad" sourceAttributeID="c">
    <resolver:Dependency ref="staticAttributes" />
    <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:mace:dir:attribute-def:c" />
    <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:oid:2.5.4.6" friendlyName="c" />
</resolver:AttributeDefinition>

<!-- schacHomeOrganization main domain -->
<resolver:AttributeDefinition id="schacHomeOrganization" xsi:type="Simple"
        xmlns="urn:mace:shibboleth:2.0:resolver:ad" sourceAttributeID="schacHomeOrganization">
    <resolver:Dependency ref="staticAttributes" />
    <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:mace:dir:attribute-def:schacHomeOrganization" />
    <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:oid:1.3.6.1.4.1.25178.1.2.9" friendlyName="schacHomeOrganization" />
</resolver:AttributeDefinition>

...

Code Block
        <AttributeRule attributeID="organizationName">
            <PermitValueRule xsi:type="basic:ANY" />
        </AttributeRule>
        <AttributeRule attributeID="norEduOrgAcronym">
            <PermitValueRule xsi:type="basic:ANY" />
        </AttributeRule>
        <AttributeRule attributeID="countryName">
            <PermitValueRule xsi:type="basic:ANY" />
        </AttributeRule>
        <AttributeRule attributeID="friendlyCountryName">
            <PermitValueRule xsi:type="basic:ANY" />
        </AttributeRule>
        <AttributeRule attributeID="schacHomeOrganization">
            <PermitValueRule xsi:type="basic:ANY" />
        </AttributeRule>