<md:Extensions> ... <RequestedAttributeExtension xmlns="http://www.gakunin.jp/ns/uapprove-jp/metadata" FriendlyName="displayName"> <Description xml:lang="en">Our SP uses the displayName attribute in order to display your name to our web page</Description> <Description xml:lang="ja">SPはウェブページに名前を表示するためにdisplayName属性を使用します</Description> </RequestedAttributeExtension> ... </md:Extensions> ...
<md:AttributeConsumingService index="1"> <md:ServiceName xml:lang="en">Sample Service</md:ServiceName> <md:ServiceDescription xml:lang="en"> An example service that requires a human-readable identifier and optional name and e-mail address. </md:ServiceDescription>
<md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" uajpmd:description="Our SP uses the mail attribute in order to fill the registration form with your mail address."/> <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/> </md:AttributeConsumingService> ... </md:SPSSODescriptor>
create table BackChannelAccess ( idxBackChannelAccess int unsigned auto_increment primary key, bcaTimeStamp timestamp not null, bcaIdxAttrReleaseApproval int unsigned not null references AttrReleaseApproval ( idxAttrReleaseApproval ), bcaLastAccess timestamp, bcaAccessCount int unsigned );
create table NamesOfApprovedService ( nasIdxAttrReleaseApproval int unsigned not null references AttrReleaseApproval(idxAttrReleaseApproval), nasServiceNames text NOT NULL );
ALTER TABLE BackChannelAccess ENGINE=MyISAM; ALTER TABLE NamesOfApprovedService ENGINE=MyISAM;
3.2 mysql.commandsの更新
SQLを定義したmysql.commandsファイルを2.2.1c付属のファイルに差し換えます。
パネル
cd /opt/uApprove unzip viewer-2.2.1c-bin.zip cp viewer-2.2.1c/conf-template/mysql.commands conf/