attribute-map.xml

Emilio Penna, Lunes, 11 de Mayo de 2020 16:34:05 -0300

Descargar (4,3 KB)

 
1
<Attributes xmlns="urn:mace:shibboleth:2.0:attribute-map" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
2




3
        <!-- SeCIU - v1 - 20160114 ep -->





4




5
    <!--





6
    The mappings are a mix of SAML 1.1 and SAML 2.0 attribute names agreed to within the Shibboleth





7
    community. The non-OID URNs are SAML 1.1 names and most of the OIDs are SAML 2.0 names, with a





8
    few exceptions for newer attributes where the name is the same for both versions. You will





9
    usually want to uncomment or map the names for both SAML versions as a unit.





10
    -->





11
    





12
    <!-- First some useful eduPerson attributes that many sites might use. -->





13
    





14
   





15
    <Attribute name="urn:mace:dir:attribute-def:eduPersonPrincipalName" id="eppn">





16
        <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>





17
    </Attribute>





18
    <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" id="eppn">





19
        <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>





20
    </Attribute>





21
    





22
    <Attribute name="urn:mace:dir:attribute-def:eduPersonScopedAffiliation" id="affiliation">





23
        <AttributeDecoder xsi:type="ScopedAttributeDecoder" caseSensitive="false"/>





24
    </Attribute>





25
    <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" id="affiliation">





26
        <AttributeDecoder xsi:type="ScopedAttributeDecoder" caseSensitive="false"/>





27
    </Attribute>





28
    





29
    <Attribute name="urn:mace:dir:attribute-def:eduPersonAffiliation" id="unscoped-affiliation">





30
        <AttributeDecoder xsi:type="StringAttributeDecoder" caseSensitive="false"/>





31
    </Attribute>





32
    <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" id="unscoped-affiliation">





33
        <AttributeDecoder xsi:type="StringAttributeDecoder" caseSensitive="false"/>





34
    </Attribute>





35
    <Attribute name="urn:mace:dir:attribute-def:eduPersonEntitlement" id="entitlement"/>





36
    <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" id="entitlement"/>





37




38
    <!-- A persistent id attribute that supports personalized anonymous access. -->





39
    





40
    <!-- First, the deprecated/incorrect version, decoded as a scoped string: -->





41
    <Attribute name="urn:mace:dir:attribute-def:eduPersonTargetedID" id="targeted-id">





42
        <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>





43
        <!-- <AttributeDecoder xsi:type="NameIDFromScopedAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/> -->





44
    </Attribute>





45
    





46
    <!-- Second, an alternate decoder that will decode the incorrect form into the newer form. -->





47
    <!--





48
    <Attribute name="urn:mace:dir:attribute-def:eduPersonTargetedID" id="persistent-id">





49
        <AttributeDecoder xsi:type="NameIDFromScopedAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>





50
    </Attribute>





51
    -->





52
    





53
    <!-- Third, the new version (note the OID-style name): -->





54
    <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" id="persistent-id">





55
        <AttributeDecoder xsi:type="NameIDAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>





56
    </Attribute>





57




58
    <!-- Fourth, the SAML 2.0 NameID Format: -->





59
    <Attribute name="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" id="persistent-id">





60
        <AttributeDecoder xsi:type="NameIDAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>





61
    </Attribute>





62
    





63
    <Attribute name="urn:oid:2.5.4.3" id="cn"/>





64
        <Attribute name="urn:oid:2.5.4.4" id="sn"/>





65
    <Attribute name="urn:oid:2.5.4.42" id="givenName"/>





66
    <Attribute name="urn:oid:0.9.2342.19200300.100.1.3" id="mail"/> 





67
    <Attribute name="urn:oid:0.9.2342.19200300.100.1.1" id="uid"/>





68
    <Attribute name="urn:oid:2.16.840.1.113730.3.1.241" id="displayName"/>





69
        





70
    <Attribute name="urn:oid:1.3.6.1.4.1.25178.1.2.9" id="schacHomeOrganization"/>





71
    <Attribute name="urn:oid:1.3.6.1.4.1.25178.1.2.10" id="schacHomeOrganizationType"/>





72
    





73
        <Attribute name="urn:oid:2.16.858.2.10005082.0.1.2.1.0" id="udelarPersonNombre1"/>





74
    <Attribute name="urn:oid:2.16.858.2.10005082.0.1.2.1.1" id="udelarPersonNombre2"/>





75
    <Attribute name="urn:oid:2.16.858.2.10005082.0.1.2.1.2" id="udelarPersonApellido1"/>





76
    <Attribute name="urn:oid:2.16.858.2.10005082.0.1.2.1.3" id="udelarPersonApellido2"/>





77
    <Attribute name="urn:oid:2.16.858.2.10005082.0.1.2.1.6" id="udelarPersonAffiliation"/>





78
    <Attribute name="urn:oid:2.16.858.2.10005082.0.1.2.1.9" id="udelarPersonTipoValidacion"/>





79
   





80
</Attributes>