shibboleth-dev - Re: [Shib-Dev] IdP attribute release
Subject: Shibboleth Developers
List archive
- From: Ian Young <>
- To:
- Subject: Re: [Shib-Dev] IdP attribute release
- Date: Tue, 18 Nov 2008 16:08:21 +0000
- Openpgp: id=EA2882BB
Alistair Young wrote:
> that's what I thought. Is there any reason it wouldn't release an
> attribute even if the attribute appeared as:
>
> <Rule>
> <Target>
> <AnyTarget></AnyTarget>
> </Target>
> <Attribute name="urn:mace:dir:attribute-def:eduPersonTargetedID">
> <AnyValue release="permit"></AnyValue>
> </Attribute>
> </Rule>
>
> Alistair
A Shibboleth IdP won't (can't) release ePTI to an SP that hasn't been
authenticated, for example because it hasn't provided a credential on
the attribute callback.
I say this specifically because I'm aware you may have been brought in
to help debug a problem of exactly this type...
-- Ian
- IdP attribute release, Alistair Young, 11/18/2008
- RE: [Shib-Dev] IdP attribute release, Scott Cantor, 11/18/2008
- Re: [Shib-Dev] IdP attribute release, Alistair Young, 11/18/2008
- RE: [Shib-Dev] IdP attribute release, Scott Cantor, 11/18/2008
- Re: [Shib-Dev] IdP attribute release, Ian Young, 11/18/2008
- RE: [Shib-Dev] IdP attribute release, Scott Cantor, 11/18/2008
- RE: [Shib-Dev] IdP attribute release, Alistair Young, 11/18/2008
- RE: [Shib-Dev] IdP attribute release, Scott Cantor, 11/18/2008
- Re: [Shib-Dev] IdP attribute release, Ian Young, 11/18/2008
- RE: [Shib-Dev] IdP attribute release, Alistair Young, 11/18/2008
- RE: [Shib-Dev] IdP attribute release, Scott Cantor, 11/18/2008
- Re: [Shib-Dev] IdP attribute release, Alistair Young, 11/18/2008
- RE: [Shib-Dev] IdP attribute release, Scott Cantor, 11/18/2008
Archive powered by MHonArc 2.6.16.