/[pdpsoft]/trunk/eu.rcauth.pilot-ica/DS/ansible/roles/delegserver/templates/shibboleth2.xml.j2
ViewVC logotype

Diff of /trunk/eu.rcauth.pilot-ica/DS/ansible/roles/delegserver/templates/shibboleth2.xml.j2

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 3044 by tamasb, Mon Jul 11 10:32:36 2016 UTC revision 3045 by tamasb, Mon Jul 11 10:52:25 2016 UTC
# Line 107  Line 107 
107                     <md:RequestedAttribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName"/>                     <md:RequestedAttribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName"/>
108                     <md:RequestedAttribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn"/>                     <md:RequestedAttribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn"/>
109                     <md:RequestedAttribute Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="cn"/>                     <md:RequestedAttribute Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="cn"/>
110                       <md:RequestedAttribute Name="urn:oid:2.5.4.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="o"/>
111    
112                     <!-- additional user attribs -->                     <!-- additional user attribs -->
113                     <md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail"/>                     <md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail"/>
# Line 163  Line 164 
164          <!-- Map to extract attributes from SAML assertions. -->          <!-- Map to extract attributes from SAML assertions. -->
165          <AttributeExtractor type="Chaining">          <AttributeExtractor type="Chaining">
166                  <AttributeExtractor type="XML" validate="true" reloadChanges="false" path="attribute-map.xml"/>                  <AttributeExtractor type="XML" validate="true" reloadChanges="false" path="attribute-map.xml"/>
167                  <!-- Extrancts the md:organizationDisplayName from the IdP metadata -->                  <!-- Extract the md:organizationDisplayName from the IdP metadata -->
168                  <AttributeExtractor type="Metadata" OrganizationDisplayName="orgDisplayName"/>                  <AttributeExtractor type="Metadata" OrganizationDisplayName="orgDisplayName"/>
169                    <!-- Extract the entity ID of the REAL authenticating authority (not the RCAuth WAYF) -->
170                    <AttributeExtractor type="Assertion" AuthenticatingAuthority="Shib-Authenticating-Authority"/>
171          </AttributeExtractor>                  </AttributeExtractor>        
172    
173          <!-- Use a SAML query if no attributes are supplied during SSO. -->          <!-- Use a SAML query if no attributes are supplied during SSO. -->

Legend:
Removed from v.3044  
changed lines
  Added in v.3045

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28