Attribute Resolver and Filter Problem Multi Valued attribute

Previous Topic
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

Attribute Resolver and Filter Problem Multi Valued attribute


I am having an issue rendering values for an multi valued LDAP attribute.  This attribute is not standard in LDAP we created it as a custom attribute in our LDAP schema.  The name of the attribute is exampleEduMemberOf.  I want to release all the values from this attribute. I am running the aacli command to see if my set up is correct. All other values (uid,  mail) are being returned except for this for exampleEduMemberof.  I have modified resolver and filter policy in a myriad of ways to no avail.  Your help is appreciated.

In the attribute-resolver.xml I created this entry.  You will notice that the OID is just some number I created.  This attribute is multi valued.
<resolver:AttributeDefinition id="exampleedumemberof" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver"
        <resolver:Dependency ref="EXAMPLE-LDAP" />

        <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:mace:dir:attribute-def:exampleedumemberof" />

        <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
            name="urn:oid:1.2.840.113556.1.2.102" friendlyName="exampleedumemberof" />

Contents of attribute-filter.xml
 <AttributeFilterPolicy id="exampleedumemberof">
        <PolicyRequirementRule xsi:type="basic:ANY" />

        <AttributeRule attributeID="exampleedumemberof">
            <PermitValueRule xsi:type="basic:ANY"/>