COmanage Developers List

[Steven Carmody <>]

Good points, Neil.

Do you know of any frameworks that abstract this attribute aggregation  
process, and place it outside of the application?

Sent from my iPhone

On May 3, 2011, at 11:32 AM, Niels van Dijk <>  
wrote:

> Hi
>
> On 05/03/2011 04:28 PM, Steven Carmody wrote:
> > The SP feature is called ""Simple" Attribute Aggregation".
> >
> > So, when scott.koranda logs into the wiki, the wiki obtains  
> > attributes
> > describing scott from ligo.org (his idp). The SP is also configured  
> > to
> > issue a SAML attribute query to the new CO instance (using one of the
> > values provide by Scott's home organization to identify Scott; this  
> > is
> > a collaboration environment, that value would typically be Scott's
> > EPPN value).
> >
> > The SP aggregates the attribute values obtained form Scott's home org
> > and from the CO, and presents them tot he wiki....
>
> Note that this requires a rather specific SP: although the technique
> used is part of the SAML spec, there is -as far as I am aware- only 1
> known implementation: Shibboleth. This may work for you if you only  
> need
> to deal with Shib (an the SPs chooce to support it), but as soon as  
> you
> have a non shib SP this will most likely not work.
> There are other ways of getting attributes though, e.g. via LDAP or by
> e.g. REST based queries.
>
> Cheers,
> Niels
> <niels_vandijk.vcf>