Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
en:entity_attributes [2021/03/04 11:22] – [Research and Scholarship] Silke Meyer | en:entity_attributes [2022/04/29 10:42] – [Degrees of Reliance of IdPs] Wolfgang Pempe | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | FIXME **This page is not fully translated, yet. Please help completing the translation.**\\ //(remove this paragraph once the translation is finished)// | ||
- | |||
====== Entity Attributes ====== | ====== Entity Attributes ====== | ||
Line 25: | Line 23: | ||
</ | </ | ||
+ | </ | ||
+ | |||
+ | For an example on how to restrict an SP's metadata import to IdPs that conform to the requirements of the Degree of Reliance ' | ||
+ | ===== SP: Required Degree of Reliance ===== | ||
+ | This entity attribute is used to signal the [[en: | ||
+ | |||
+ | <file xml dfn-aai-sp-metadata.xml> | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | < | ||
+ | </ | ||
+ | < | ||
+ | <!-- ... --> | ||
+ | < | ||
+ | < | ||
+ | </ | ||
+ | </ | ||
+ | </ | ||
</ | </ | ||
Line 78: | Line 96: | ||
==== Hide from Discovery ==== | ==== Hide from Discovery ==== | ||
+ | We have not implemented the Entity Category [[https:// | ||
- | Die Entity Category [[https:// | + | ==== Examples ==== |
- | ==== Beispiele ==== | + | The following example shows an extract from SP metadata with three Entity Attributes: |
- | + | ||
- | Hier sehen Sie den Metadatenauszug eines Services Providers mit drei Entity Attributes: | + | |
<file xml dfn-aai-sp-metadata.xml> | <file xml dfn-aai-sp-metadata.xml> | ||
Line 103: | Line 120: | ||
</ | </ | ||
- | Hier sehen Sie den Metadatenauszug eines Identity Providers: Er hat Attributfreigaben für Code of Conduct-getreue | + | The next example shows IdP metadata: The IdP releases attributes to CoCo compliant |
<file xml dfn-aai-metadata.xml> | <file xml dfn-aai-metadata.xml> | ||
Line 124: | Line 141: | ||
</ | </ | ||
- | ===== Entity Categories in der DFN-AAI ===== | + | ===== Entity Categories in DFN-AAI ===== |
- | <callout color="# | + | <callout color="# |
- | In der DFN-AAI | + | In DFN-AAI, there are more Entity Categories |
* [[http:// | * [[http:// | ||
Line 141: | Line 158: | ||
* [[http:// | * [[http:// | ||
- | Details hierzu finden sich auf einer [[: | + | See the details |
- | ==== Beispiele | + | ==== Examples |
- | Hier sehen Sie den Metadatenauszug eines SP, der am bwIdM-Verbund teilnimmt: | + | This is the according metadata extract of an SP participating in bwIdM: |
<file xml dfn-aai-sp-metadata.xml> | <file xml dfn-aai-sp-metadata.xml> | ||
Line 163: | Line 180: | ||
</ | </ | ||
- | Hier sehen Sie den Metadatenauszug eines IdP, der am bwIdM-Verbund teilnimmt und sich der Verlässlichkeitsklasse | + | The metadata of an IdP taking part in bwIdM and committing to the Degree of Reliance "Advanced" look like this: |
<file xml dfn-aai-metadata.xml> | <file xml dfn-aai-metadata.xml> | ||
Line 184: | Line 201: | ||
</ | </ | ||
- | Hier sehen Sie den Metadatenauszug eines IdP aus den eduGAIN-Metadaten | + | This extract shows metadata of an IdP from eduGAIN (from the UK federation) where users can self-register. |
<file xml dfn-aai-edugain+idp-metadata.xml> | <file xml dfn-aai-edugain+idp-metadata.xml> | ||
Line 202: | Line 219: | ||
</ | </ | ||
- | ==== Beispiele | + | ==== Examples |
- | SP-seitige Whitelist, bei der die Metadaten, mit denen der SP arbeitet, auf IdPs aus dem bwIDM-Projekt beschränkt werden: | + | This Shibboleth |
<file xml shibboleth2.xml> | <file xml shibboleth2.xml> | ||
Line 224: | Line 241: | ||
</ | </ | ||
- | SP-seitige Blacklist, bei der aus den Metadaten, mit denen der SP arbeitet, sog. Public | + | This Shibboleth |
<file xml shibboleth2.xml> | <file xml shibboleth2.xml> | ||
Line 244: | Line 261: | ||
</ | </ | ||
- | SP-seitige Whitelist, bei der die Metadaten, mit denen der SP arbeitet, auf IdPs der [[: | + | This Shibboleth |
<file xml shibboleth2.xml> | <file xml shibboleth2.xml> | ||
Line 261: | Line 278: | ||
</ | </ | ||
- | IdP: Attributfreigabe an bwIDM-SPs: | + | This IdP filter policy releases a list of attributes to bwIDM Service Providers: |
<file xml attribute-filter.xml> | <file xml attribute-filter.xml> | ||
Line 283: | Line 300: | ||
</ | </ | ||
- | Weitere Beispiele unter [[de: | + | Find more examples on the page about [[de: |
- | ===== Referenzen | + | ===== References |
- | Weiterführende Informationen finden Sie im Shibboleth Wiki unter folgenden Links: | + | For further reading, please consult the Shibboleth Wiki: |
- | * **IdP - Attributfreigabe** | + | * **IdP - Attribute Release** |
- | * [[https:// | + | * [[https:// |
- | * [[https:// | + | * [[https:// |
- | * **IdP - Relying Party Konfiguration** | + | * **IdP - Relying Party Configuration** |
- | * [[https:// | + | * [[https:// |
- | * **IdP - internes Tagging mit Entity | + | * **IdP - internal tagging with Entity |
- | * [[https:// | + | * [[https:// |
* **SP - Metadata Filter (matcher=" | * **SP - Metadata Filter (matcher=" | ||
- | * [[https:// | + | * [[https:// |
- | * [[https:// | + | * [[https:// |
- | * **SP - internes Tagging mit Entity | + | * **SP - internal tagging with Entity |
- | * [[https:// | + | * [[https:// |
- | {{tag> | + | |
+ | {{tag> | ||