1 <Attributes xmlns="urn:mace:shibboleth:2.0:attribute-map" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
3 <!-- First some useful eduPerson attributes that many sites might use. -->
5 <Attribute name="urn:mace:dir:attribute-def:eduPersonPrincipalName" id="eppn">
6 <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>
8 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" id="eppn">
9 <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>
12 <Attribute name="urn:mace:dir:attribute-def:eduPersonScopedAffiliation" id="affiliation">
13 <AttributeDecoder xsi:type="ScopedAttributeDecoder" caseSensitive="false"/>
15 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" id="affiliation">
16 <AttributeDecoder xsi:type="ScopedAttributeDecoder" caseSensitive="false"/>
19 <Attribute name="urn:mace:dir:attribute-def:eduPersonAffiliation" id="unscoped-affiliation">
20 <AttributeDecoder xsi:type="StringAttributeDecoder" caseSensitive="false"/>
22 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" id="unscoped-affiliation">
23 <AttributeDecoder xsi:type="StringAttributeDecoder" caseSensitive="false"/>
26 <Attribute name="urn:mace:dir:attribute-def:eduPersonEntitlement" id="entitlement"/>
27 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" id="entitlement"/>
29 <!-- A persistent id attribute that supports personalized anonymous access. -->
31 <!-- First, the deprecated/incorrect version, decoded as a scoped string: -->
32 <Attribute name="urn:mace:dir:attribute-def:eduPersonTargetedID" id="targeted-id">
33 <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>
34 <!-- <AttributeDecoder xsi:type="NameIDFromScopedAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/> -->
37 <!-- Second, an alternate decoder that will decode the incorrect form into the newer form. -->
39 <Attribute name="urn:mace:dir:attribute-def:eduPersonTargetedID" id="persistent-id">
40 <AttributeDecoder xsi:type="NameIDFromScopedAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>
44 <!-- Third, the new version (note the OID-style name): -->
45 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" id="persistent-id">
46 <AttributeDecoder xsi:type="NameIDAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>
49 <!-- Fourth, the SAML 2.0 NameID Format: -->
50 <Attribute name="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" id="persistent-id">
51 <AttributeDecoder xsi:type="NameIDAttributeDecoder" formatter="$NameQualifier!$SPNameQualifier!$Name" defaultQualifiers="true"/>
54 <!-- Some more eduPerson attributes, uncomment these to use them... -->
56 <Attribute name="urn:mace:dir:attribute-def:eduPersonPrimaryAffiliation" id="primary-affiliation">
57 <AttributeDecoder xsi:type="StringAttributeDecoder" caseSensitive="false"/>
59 <Attribute name="urn:mace:dir:attribute-def:eduPersonNickname" id="nickname"/>
60 <Attribute name="urn:mace:dir:attribute-def:eduPersonPrimaryOrgUnitDN" id="primary-orgunit-dn"/>
61 <Attribute name="urn:mace:dir:attribute-def:eduPersonOrgUnitDN" id="orgunit-dn"/>
62 <Attribute name="urn:mace:dir:attribute-def:eduPersonOrgDN" id="org-dn"/>
64 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.5" id="primary-affiliation">
65 <AttributeDecoder xsi:type="StringAttributeDecoder" caseSensitive="false"/>
67 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.2" id="nickname"/>
68 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.8" id="primary-orgunit-dn"/>
69 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.4" id="orgunit-dn"/>
70 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.3" id="org-dn"/>
72 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" id="assurance"/>
74 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.5.1.1" id="member"/>
76 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.6.1.1" id="eduCourseOffering"/>
77 <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.6.1.2" id="eduCourseMember"/>
80 <!--Examples of LDAP-based attributes, uncomment to use these... -->
82 <Attribute name="urn:mace:dir:attribute-def:cn" id="cn"/>
83 <Attribute name="urn:mace:dir:attribute-def:sn" id="sn"/>
84 <Attribute name="urn:mace:dir:attribute-def:givenName" id="givenName"/>
85 <Attribute name="urn:mace:dir:attribute-def:mail" id="mail"/>
86 <Attribute name="urn:mace:dir:attribute-def:telephoneNumber" id="telephoneNumber"/>
87 <Attribute name="urn:mace:dir:attribute-def:title" id="title"/>
88 <Attribute name="urn:mace:dir:attribute-def:initials" id="initials"/>
89 <Attribute name="urn:mace:dir:attribute-def:description" id="description"/>
90 <Attribute name="urn:mace:dir:attribute-def:carLicense" id="carLicense"/>
91 <Attribute name="urn:mace:dir:attribute-def:departmentNumber" id="departmentNumber"/>
92 <Attribute name="urn:mace:dir:attribute-def:displayName" id="displayName"/>
93 <Attribute name="urn:mace:dir:attribute-def:employeeNumber" id="employeeNumber"/>
94 <Attribute name="urn:mace:dir:attribute-def:employeeType" id="employeeType"/>
95 <Attribute name="urn:mace:dir:attribute-def:preferredLanguage" id="preferredLanguage"/>
96 <Attribute name="urn:mace:dir:attribute-def:manager" id="manager"/>
97 <Attribute name="urn:mace:dir:attribute-def:seeAlso" id="seeAlso"/>
98 <Attribute name="urn:mace:dir:attribute-def:facsimileTelephoneNumber" id="facsimileTelephoneNumber"/>
99 <Attribute name="urn:mace:dir:attribute-def:street" id="street"/>
100 <Attribute name="urn:mace:dir:attribute-def:postOfficeBox" id="postOfficeBox"/>
101 <Attribute name="urn:mace:dir:attribute-def:postalCode" id="postalCode"/>
102 <Attribute name="urn:mace:dir:attribute-def:st" id="st"/>
103 <Attribute name="urn:mace:dir:attribute-def:l" id="l"/>
104 <Attribute name="urn:mace:dir:attribute-def:o" id="o"/>
105 <Attribute name="urn:mace:dir:attribute-def:ou" id="ou"/>
106 <Attribute name="urn:mace:dir:attribute-def:businessCategory" id="businessCategory"/>
107 <Attribute name="urn:mace:dir:attribute-def:physicalDeliveryOfficeName" id="physicalDeliveryOfficeName"/>
109 <Attribute name="urn:oid:2.5.4.3" id="cn"/>
110 <Attribute name="urn:oid:2.5.4.4" id="sn"/>
111 <Attribute name="urn:oid:2.5.4.42" id="givenName"/>
112 <Attribute name="urn:oid:0.9.2342.19200300.100.1.3" id="mail"/>
113 <Attribute name="urn:oid:2.5.4.20" id="telephoneNumber"/>
114 <Attribute name="urn:oid:2.5.4.12" id="title"/>
115 <Attribute name="urn:oid:2.5.4.43" id="initials"/>
116 <Attribute name="urn:oid:2.5.4.13" id="description"/>
117 <Attribute name="urn:oid:2.16.840.1.113730.3.1.1" id="carLicense"/>
118 <Attribute name="urn:oid:2.16.840.1.113730.3.1.2" id="departmentNumber"/>
119 <Attribute name="urn:oid:2.16.840.1.113730.3.1.3" id="employeeNumber"/>
120 <Attribute name="urn:oid:2.16.840.1.113730.3.1.4" id="employeeType"/>
121 <Attribute name="urn:oid:2.16.840.1.113730.3.1.39" id="preferredLanguage"/>
122 <Attribute name="urn:oid:2.16.840.1.113730.3.1.241" id="displayName"/>
123 <Attribute name="urn:oid:0.9.2342.19200300.100.1.10" id="manager"/>
124 <Attribute name="urn:oid:2.5.4.34" id="seeAlso"/>
125 <Attribute name="urn:oid:2.5.4.23" id="facsimileTelephoneNumber"/>
126 <Attribute name="urn:oid:2.5.4.9" id="street"/>
127 <Attribute name="urn:oid:2.5.4.18" id="postOfficeBox"/>
128 <Attribute name="urn:oid:2.5.4.17" id="postalCode"/>
129 <Attribute name="urn:oid:2.5.4.8" id="st"/>
130 <Attribute name="urn:oid:2.5.4.7" id="l"/>
131 <Attribute name="urn:oid:2.5.4.10" id="o"/>
132 <Attribute name="urn:oid:2.5.4.11" id="ou"/>
133 <Attribute name="urn:oid:2.5.4.15" id="businessCategory"/>
134 <Attribute name="urn:oid:2.5.4.19" id="physicalDeliveryOfficeName"/>