"Fossies" - the Fresh Open Source Software Archive

Member "keystone-17.0.0/devstack/files/federation/attribute-map.xml" (13 May 2020, 3794 Bytes) of package /linux/misc/openstack/keystone-17.0.0.tar.gz:


As a special service "Fossies" has tried to format the requested source page into HTML format using (guessed) XML source code syntax highlighting (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file. See also the latest Fossies "Diffs" side-by-side code changes report for "attribute-map.xml": 16.0.1_vs_17.0.0.

    1 <Attributes xmlns="urn:mace:shibboleth:2.0:attribute-map" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
    2 
    3     <!--
    4     The mappings are a mix of SAML 1.1 and SAML 2.0 attribute names agreed to within the Shibboleth
    5     community. The non-OID URNs are SAML 1.1 names and most of the OIDs are SAML 2.0 names, with a
    6     few exceptions for newer attributes where the name is the same for both versions. You will
    7     usually want to uncomment or map the names for both SAML versions as a unit.
    8     -->
    9 
   10     <Attribute id="openstack_project" name="openstack_project"/>
   11     <Attribute id="openstack_project_domain" name="openstack_project_domain"/>
   12     <Attribute id="openstack_roles" name="openstack_roles"/>
   13     <Attribute id="openstack_user" name="openstack_user"/>
   14     <Attribute id="openstack_user_domain" name="openstack_user_domain"/>
   15     <Attribute id="openstack_groups" name="openstack_groups"/>
   16 
   17     <!-- First some useful eduPerson attributes that many sites might use. -->
   18     <Attribute name="urn:mace:dir:attribute-def:eduPersonPrincipalName" id="eppn">
   19         <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>
   20     </Attribute>
   21     <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" id="eppn">
   22         <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>
   23     </Attribute>
   24 
   25     <Attribute name="urn:mace:dir:attribute-def:eduPersonScopedAffiliation" id="affiliation">
   26         <AttributeDecoder xsi:type="ScopedAttributeDecoder" caseSensitive="false"/>
   27     </Attribute>
   28     <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" id="affiliation">
   29         <AttributeDecoder xsi:type="ScopedAttributeDecoder" caseSensitive="false"/>
   30     </Attribute>
   31 
   32     <Attribute name="urn:mace:dir:attribute-def:eduPersonAffiliation" id="unscoped-affiliation">
   33         <AttributeDecoder xsi:type="StringAttributeDecoder" caseSensitive="false"/>
   34     </Attribute>
   35     <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" id="unscoped-affiliation">
   36         <AttributeDecoder xsi:type="StringAttributeDecoder" caseSensitive="false"/>
   37     </Attribute>
   38 
   39     <Attribute name="urn:mace:dir:attribute-def:eduPersonEntitlement" id="entitlement"/>
   40     <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" id="entitlement"/>
   41 
   42     <!-- A persistent id attribute that supports personalized anonymous access. -->
   43 
   44     <!-- First, the deprecated/incorrect version, decoded as a scoped string: -->
   45     <Attribute name="urn:mace:dir:attribute-def:eduPersonTargetedID" id="targeted-id">
   46         <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>
   47         <!-- <AttributeDecoder xsi:type="NameIDFromScopedAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/> -->
   48     </Attribute>
   49 
   50     <!-- Second, an alternate decoder that will decode the incorrect form into the newer form. -->
   51     <!--
   52     <Attribute name="urn:mace:dir:attribute-def:eduPersonTargetedID" id="persistent-id">
   53         <AttributeDecoder xsi:type="NameIDFromScopedAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>
   54     </Attribute>
   55     -->
   56 
   57     <!-- Third, the new version (note the OID-style name): -->
   58     <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" id="persistent-id">
   59         <AttributeDecoder xsi:type="NameIDAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>
   60     </Attribute>
   61 
   62     <!-- Fourth, the SAML 2.0 NameID Format: -->
   63     <Attribute name="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" id="persistent-id">
   64         <AttributeDecoder xsi:type="NameIDAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>
   65     </Attribute>
   66 
   67     <!-- UID attribute used by samltest.id -->
   68     <Attribute name="urn:oid:0.9.2342.19200300.100.1.1" id="uid" />
   69 
   70 </Attributes>