Shibboleth 3 - SAML response for Attribute

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

Shibboleth 3 - SAML response for Attribute

Vinay Joseph
I have configured Shibboleth 3 to give the SAML response containing the following Attribute Statement

                    <saml2:AttributeStatement>
                        <saml2:Attribute FriendlyName="uid"
                            Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                            <saml2:AttributeValue>vinay.joseph@cccc.cccc</saml2:AttributeValue>
                        </saml2:Attribute>
                        <saml2:Attribute FriendlyName="memberOf"
                            Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
                            <saml2:AttributeValue>cccc\cccc-cccc-cccc</saml2:AttributeValue>
                        </saml2:Attribute>
                    </saml2:AttributeStatement>

I like to if its possible to configure the attribute-resolver.xml so that the following xml Attribute statement is in the SAML response.

                    <saml2:AttributeStatement>
                        <saml2:Attribute FriendlyName="uid">
                            <saml2:AttributeValue>vinay.joseph@cccc.cccc</saml2:AttributeValue>
                        </saml2:Attribute>
                        <saml2:Attribute FriendlyName="memberOf">
                            <saml2:AttributeValue>cccc\cccc-cccc-cccc</saml2:AttributeValue>
                        </saml2:Attribute>
                    </saml2:AttributeStatement>

The contents of my attribute-resolver.xml

       

    <resolver:AttributeDefinition id="memberOf" xsi:type="ad:Simple" sourceAttributeID="memberOf">
    <resolver:Dependency ref="StaticGroups" />
    <resolver:AttributeEncoder xsi:type="enc:SAML1String" name="urn:mace:dir:attribute-def:memberOf" encodeType="false" />
            <resolver:AttributeEncoder xsi:type="enc:SAML2String" name="urn:oid:2.5.4.42" friendlyName="memberOf" encodeType="false" nameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" />
    </resolver:AttributeDefinition>
       
       
       
   
   
    <resolver:DataConnector id="StaticGroups" xsi:type="dc:Static" xmlns="urn:mace:shibboleth:2.0:resolver:dc">
    <Attribute id="memberOf">
     <Value>cccc\cccc-cccc-cccc</Value>
    </Attribute>
    </resolver:DataConnector>