I2 IBM RP Access with XMLDAP IDP

From OSIS Open Source Identity Systems

Tested by Shane Weeden (sweeden@au1.ibm.com).

The XMLDAP SAML Assertion encodes attributes in a way different from most other vendors (including self-issued cards). This required us to make the RP more lenient. The SAML Assertion attribute from XMLDAP looks like:

<saml:Attribute AttributeName="emailaddress" AttributeNamespace="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"><saml:AttributeValue>sweeden@au1.ibm.com</saml:AttributeValue></saml:Attribute>

The AttributeNamespace we were expecting was just http://schemas.xmlsoap.org/ws/2005/05/identity/claims

Retrieved from "http://osis.idcommons.net/wiki/I2_IBM_RP_Access_with_XMLDAP_IDP"

Views

Article
Discussion
View source
History

Personal tools

Search

Toolbox

What links here
Related changes
Upload file
Special pages
Printable version
Permanent link