Page is under update
This page is under update and the expected result will be changed due to GDPR!
Entity categories is used for data release minimization and scalable attribute release from an Identity Provider within SWAMID to a Service Provider in SWAMID and/or eduGAIN.
Expected attribute release based on entity categories
x - Users are expected to have a value and that should be released, if no value is present do not release an empty value.
o - Release only if the user has a value on the attribute.
Attribut | Without enitity category | GÉANT CoCo | REFEDS R&S | SWAMID R&E | SWAMID SFS-1993-1153 | Eleg loa2-pnr |
---|---|---|---|---|---|---|
Beroenden | Release attribute "only if required" in metadata1 | SWAMID R&E is used in pair with one of the entity categories SWAMID EU-Adequate-Protection, SWAMID NREN-Service and SWAMID HEI-Service | Release only for only for users with a Swedish personal identity number (sv. personnummer), a Swedish co-ordination number (sv. samordningsnummer) or a organisational student interim identity number (sv. interimspersonnummer) | Only for Identity Providers and their users that fulfills the assurance profile SWAMID AL2 and where the user has a Swedish personal identity number (sv. personnummer) or a Swedish co-ordination number (sv. samordningsnummer). | ||
transientId | x | x | x | x | x | x |
eduPersonTargetedID | x | x2 | ||||
eduPersonPrincipalName | x | x | x | |||
eduPersonUniqueID3 | x | x | x | |||
eduPersonOrcid | o | o | ||||
norEduPersonNIN | o | |||||
personalIdentityNumber | o | |||||
x | x | x | ||||
displayName | x | x | x | x | ||
commonName | x | x | ||||
givenName | x | x | x | x | ||
surname | x | x | x | x | ||
eduPersonAssurance | x | x | x | |||
eduPersonScopedAffiliation | x | x | ||||
eduPersonAffiliation | x | |||||
organizationName | x | x | ||||
norEduOrgAcronym | x | x | ||||
countryName | x | x | ||||
friendlyCountryName | x | x | ||||
schacHomeOrganization | x | x | ||||
schacHomeOrganizationType | x |
1 The entity category GÉANT Code of Conduct does not have a specific attribute bundle. Instead of an attribute bundle it uses attribute request in metadata for specific required attributes.
2 eduPersonTargetedID should only be released in with the entity category REFEDS Research & Scholarship if eduPersonPrincipalName is reassignable.
3 eduPersonUniqueID must be a long term unique identifier that will not be reused. If eduPersonPrincipalName is non-reassignable then eduPersonUniqueID can have the same value as eduPersonPrincipalName.
URI for all entity categories used within SWAMID
Entity category | Unique identifier |
---|---|
GÉANT CoCo | http://www.geant.net/uri/dataprotection-code-of-conduct/v1 |
REFEDS R&S | http://refeds.org/category/research-and-scholarship |
SWAMID R&E | http://www.swamid.se/category/research-and-education |
SWAMID SFS-1993-1153 | http://www.swamid.se/category/sfs-1993-1153 |
E-leg loa2-pnr | http://id.elegnamnden.se/loa/1.0/loa2 |
SWAMID EU-Adequate-Protection | http://www.swamid.se/category/eu-adequate-protection |
SWAMID NREN-Service | http://www.swamid.se/category/nren-service |
SWAMID HEI-Service | http://www.swamid.se/category/hei-service |
URI for all assurance profiles used within SWAMID
Entitetskategori | Unik identifierare |
---|---|
SWAMID AL1 | http://www.swamid.se/policy/assurance/al1 |
SWAMID AL2 | http://www.swamid.se/policy/assurance/al2 |
REFEDS SIRTFI | https://refeds.org/sirtfi |