...
If an owner of a Service and the Identity Provider Home Organisation has a bilateral agreement the attribute release can be extended with additional attributes based on the agreement.
Best Practice Attribute release based on entity categories
x - Attribute is released if it's available in the Home Organisation Identity Provider.
o - Attribute is released only if requested and required in the metadata for the service and if it's available in the Home Organisation Identity Provider.
...
- The entity category GÉANT Code of Conduct does not have a specific attribute bundle. Instead of an attribute bundle it uses attribute request in metadata for specific required attributes.
- norEduPersonNIN and personalIdentityNumber shall only be released when required by entities registered with in SWAMID (registrationAuthority="http://www.swamid.se/").
- personalIdentityNumber must only contain Swedish Personal Numbers or Swedish Co-ordination Numbers.
- norEduPersonNIN can besides Swedish Personal Numbers and Swedish Co-ordination Numbers also contain Interim Personal Numbers from the student documentation system Ladok and the Swedish national study enrolment system.
- eduPersonTargetedID should only be released in with the entity category REFEDS Research & Scholarship if eduPersonPrincipalName is reassignable.
- eduPersonUniqueID must be a long term unique identifier that will not be reused. If eduPersonPrincipalName is non-reassignable then eduPersonUniqueID can have the same value as eduPersonPrincipalName.
URI for all entity categories used within SWAMID
Entity category | Unique identifier | |
---|---|---|
GÉANT CoCo | http://www.geant.net/uri/dataprotection-code-of-conduct/v1 | |
REFEDS R&S | http://refeds.org/category/research-and-scholarship | |
SWAMID R&E | http://www.swamid.se/category/research-and-education | Will be deprecated 2020-05-01 and will be removed 2020-11-01 |
SWAMID SFS-1993-1153 | http://www.swamid.se/category/sfs-1993-1153 | Will be deprecated 2020-05-01 and will be removed 2020-11-01 |
SWAMID EU-Adequate-Protection | http://www.swamid.se/category/eu-adequate-protection | Will be deprecated 2020-05-01 and will be removed 2020-11-01 |
SWAMID NREN-Service | http://www.swamid.se/category/nren-service | Will be deprecated 2020-05-01 and will be removed 2020-11-01 |
SWAMID HEI-Service | http://www.swamid.se/category/hei-service | Will be deprecated 2020-05-01 and will be removed 2020-11-01 |
URI for all assurance profiles used within SWAMID
Entitetskategori | Unik identifierare |
---|---|
SWAMID AL1 | http://www.swamid.se/policy/assurance/al1 |
SWAMID AL2 | http://www.swamid.se/policy/assurance/al2 |
SWAMID AL2-MFA-HI | https://www.swamid.se/policy/authentication/swamid-al2-mfa-hi |
REFEDS Assurance Framework | https://refeds.org/assurance/* |
REFEDS SIRTFI | https://refeds.org/sirtfi |
...