...
コード ブロック | ||
---|---|---|
| ||
--------attribute-resolver.xmlに追加--------------
<AttributeDefinition xsi:type="Mapped" id="eduPersonEntitlementForEduroamFedID">
<InputDataConnector ref="myLDAP" attributeNames="uid" />
<DefaultValue passThru="false"/>
<AttributeEncoder xsi:type="SAML1String" name="urn:mace:dir:attribute-def:eduPersonEntitlement" encodeType="false" />
<AttributeEncoder xsi:type="SAML2String" name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" friendlyName="eduPersonEntitlement" encodeType="false" />
<ValueMap>
<ReturnValue>urn:mace:gakunin.jp:entitlement:federated-id.eduroam.jp:site-admin</ReturnValue>
<SourceValue>test002</SourceValue>
<SourceValue>ID2</SourceValue>
<SourceValue>ID3</SourceValue>
</ValueMap>
</AttributeDefinition>
--------attribute-filter.xmlに追加--------------
<!-- Policy for Eduroam FederatedID -->
<AttributeFilterPolicy id="PolicyforEduroamFederatedId">
<PolicyRequirementRule xsi:type="Requester" value="https://federated-id.eduroam.jp/shibboleth-sp" />
<AttributeRule attributeID="eduPersonTargetedID">
<PermitValueRule xsi:type="ANY" />
</AttributeRule>
<AttributeRule attributeID="organizationName">
<PermitValueRule xsi:type="ANY" />
</AttributeRule>
<AttributeRule attributeID="eduPersonAffiliation">
<PermitValueRule xsi:type="ANY" />
</AttributeRule>
<AttributeRule attributeID="eduPersonEntitlementForEduroamFedID">
<PermitValueRule xsi:type="ANY" />
</AttributeRule>
</AttributeFilterPolicy> |
コード ブロック | ||
---|---|---|
| ||
--------attribute-resolver.xmlに追加-------------- <resolver:AttributeDefinition xsi:type="ad:Mapped" id="eduPersonEntitlementForEduroamFedID" sourceAttributeID="uid"> <resolver:Dependency ref="myLDAP" /> <resolver:AttributeEncoder xsi:type="enc:SAML1String" name="urn:mace:dir:attribute-def:eduPersonEntitlement" encodeType="false" /> <resolver:AttributeEncoder xsi:type="enc:SAML2String" name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" friendlyName="eduPersonEntitlement" encodeType="false" /> <ad:ValueMap> <ad:ReturnValue>urn:mace:gakunin.jp:entitlement:federated-id.eduroam.jp:site-admin</ad:ReturnValue> <ad:SourceValue>ID1</ad:SourceValue> <ad:SourceValue>ID2</ad:SourceValue> <ad:SourceValue>ID3</ad:SourceValue> </ad:ValueMap> </resolver:AttributeDefinition> --------attribute-filter.xmlに追加-------------- <!-- Policy for Eduroam FederatedID --> <AttributeFilterPolicy id="PolicyforEduroamFederatedId"> <PolicyRequirementRule xsi:type="Requester" value="https://federated-id.eduroam.jp/shibboleth-sp" /> <AttributeRule attributeID="eduPersonTargetedID"> <PermitValueRule xsi:type="ANY" /> </AttributeRule> <AttributeRule attributeID="organizationName"> <PermitValueRule xsi:type="ANY" /> </AttributeRule> <AttributeRule attributeID="eduPersonAffiliation"> <PermitValueRule xsi:type="ANY" /> </AttributeRule> <AttributeRule attributeID="eduPersonEntitlementForEduroamFedID"> <PermitValueRule xsi:type="ANY" /> </AttributeRule> </AttributeFilterPolicy> |
...