Entity categories are used for data release minimization and scalable attribute release from an Identity Provider within SWAMID to a Service Provider in SWAMID and/or eduGAIN.
If an owner of a Service and the Identity Provider Home Organisation has a bilateral agreement the attribute release can be extended with additional attributes based on the agreement.
x - Attribute is released if it's available in the Home Organisation Identity Provider.
o - Attribute is released only if requested and required in the metadata for the service and if it's available in the Home Organisation Identity Provider.
SAML2 Attribute Identifier | Friendly Name | Without enitity category | GÉANT CoCo | REFEDS R&S | SWAMID R&E | SWAMID SFS-1993-1153 | |||||
---|---|---|---|---|---|---|---|---|---|---|---|
|
|
| |||||||||
urn:oid:1.3.6.1.4.1.5923.1.1.1.10 | eduPersonTargetedID | o | x3 | ||||||||
urn:oid:1.3.6.1.4.1.5923.1.1.1.6 | eduPersonPrincipalName | o | x | x | |||||||
urn:oid:1.3.6.1.4.1.5923.1.1.1.13 | eduPersonUniqueID 4 | (deprecated and removed from example attribute-filter) | |||||||||
urn:oid:1.3.6.1.4.1.5923.1.1.1.16 | eduPersonOrcid | o | |||||||||
urn:oid:1.3.6.1.4.1.2428.90.1.5 | norEduPersonNIN | o2 | x | ||||||||
urn:oid:1.2.752.29.4.13 | personalIdentityNumber | o2 | |||||||||
urn:oid:1.3.6.1.4.1.25178.1.2.3 | schacDateOfBirth | o | |||||||||
urn:oid:0.9.2342.19200300.100.1.3 | o | x | x | ||||||||
urn:oid:2.16.840.1.113730.3.1.241 | displayName | o | x | x | |||||||
urn:oid:2.5.4.3 | cn (aka commonName) | o | x | ||||||||
urn:oid:2.5.4.42 | givenName | o | x | x | |||||||
urn:oid:2.5.4.4 | sn (aka surname) | o | x | x | |||||||
urn:oid:1.3.6.1.4.1.5923.1.1.1.11 | eduPersonAssurance | o | x | x | x | ||||||
urn:oid:1.3.6.1.4.1.5923.1.1.1.9 | eduPersonScopedAffiliation | o | x | x | |||||||
urn:oid:1.3.6.1.4.1.5923.1.1.1.1 | eduPersonAffiliation | o | |||||||||
urn:oid:2.5.4.10 | o (aka organizationName) | o | x | ||||||||
urn:oid:1.3.6.1.4.1.2428.90.1.6 | norEduOrgAcronym | o | x | ||||||||
urn:oid:2.5.4.6 | c (aka countryName) | o | x | ||||||||
urn:oid:0.9.2342.19200300.100.1.43 | co (aka friendlyCountryName) | o | x | ||||||||
urn:oid:1.3.6.1.4.1.25178.1.2.9 | schacHomeOrganization | o | x | ||||||||
urn:oid:1.3.6.1.4.1.25178.1.2.10 | schacHomeOrganizationType | o |
Entity category | Unique identifier | |
---|---|---|
GÉANT CoCo | http://www.geant.net/uri/dataprotection-code-of-conduct/v1 | |
REFEDS R&S | http://refeds.org/category/research-and-scholarship | |
SWAMID R&E | http://www.swamid.se/category/research-and-education | Deprecated and will be completely removed 2021-12-31 |
SWAMID SFS-1993-1153 | http://www.swamid.se/category/sfs-1993-1153 | Deprecated and will be completely removed 2021-12-31 |
SWAMID EU-Adequate-Protection | http://www.swamid.se/category/eu-adequate-protection | Deprecated and will be completely removed 2021-12-31 |
SWAMID NREN-Service | http://www.swamid.se/category/nren-service | Deprecated and will be completely removed 2021-12-31 |
SWAMID HEI-Service | http://www.swamid.se/category/hei-service | Deprecated and will be completely removed 2021-12-31 |
Entitetskategori | Unik identifierare | |
---|---|---|
SWAMID AL1 | http://www.swamid.se/policy/assurance/al1 | |
SWAMID AL2 | http://www.swamid.se/policy/assurance/al2 | |
SWAMID AL3 | http://www.swamid.se/policy/assurance/al3 | |
SWAMID AL2-MFA-HI | https://www.swamid.se/policy/authentication/swamid-al2-mfa-hi | Deprecated and will be completely removed 2021-12-31 |
REFEDS Assurance Framework | https://refeds.org/assurance/* | |
REFEDS SIRTFI | https://refeds.org/sirtfi |