1 <?xml version="1.0" encoding="UTF-8"?>
2 <schema targetNamespace="urn:mace:shibboleth:2.0:attribute-map"
3 xmlns="http://www.w3.org/2001/XMLSchema"
4 xmlns:am="urn:mace:shibboleth:2.0:attribute-map"
5 elementFormDefault="qualified"
10 This schema maps SAML attributes into Shibboleth internal attributes.
14 <simpleType name="string">
15 <restriction base="string">
16 <minLength value="1"/>
20 <simpleType name="anyURI">
21 <restriction base="anyURI">
22 <minLength value="1"/>
26 <simpleType name="listOfStrings">
27 <list itemType="am:string"/>
30 <complexType name="PluggableType">
32 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
34 <attribute name="type" type="am:string" use="required"/>
35 <anyAttribute namespace="##any" processContents="lax"/>
38 <element name="Attributes">
40 <documentation>The set of SAML 1/2 attribute mappings.</documentation>
44 <element name="MetadataProvider" type="am:PluggableType" minOccurs="0"/>
45 <element name="TrustEngine" type="am:PluggableType" minOccurs="0"/>
46 <element name="AttributeFilter" type="am:PluggableType" minOccurs="0"/>
47 <element name="Attribute" type="am:AttributeType" maxOccurs="unbounded"/>
49 <attribute name="metadataPolicyId" type="am:string"/>
53 <complexType name="AttributeType">
55 <documentation>Rule for mapping a SAML 1/2 attribute to an internal attribute.</documentation>
58 <element name="AttributeDecoder" type="am:AttributeDecoderType" minOccurs="0"/>
60 <attribute name="id" type="am:string" use="required">
62 <documentation>The internal attribute ID to which this SAML attribute maps.</documentation>
65 <attribute name="aliases" type="am:listOfStrings">
67 <documentation>Optional aliases for the internal attribute to which this SAML attribute maps.</documentation>
70 <attribute name="name" type="am:string" use="required">
72 <documentation>The SAML 1 AttributeName or SAML 2 Name of the attribute.</documentation>
75 <attribute name="nameFormat" type="am:string">
77 <documentation>The SAML 1 Namespace or SAML 2 NameFormat of the attribute.</documentation>
82 <complexType name="AttributeDecoderType" abstract="true">
85 Decodes a SAML attribute into its Shibboleth-internal representation.
88 <attribute name="caseSensitive" type="boolean">
91 Flag controlling case sensitivity when comparisons to the attribute's values are done.
95 <attribute name="internal" type="boolean">
97 <documentation>Flag controlling whether the resulting attribute should be exported for CGI use.</documentation>
102 <complexType name="StringAttributeDecoder">
105 Decoder for attributes with string values.
109 <extension base="am:AttributeDecoderType" />
113 <complexType name="ScopedAttributeDecoder">
116 Decoder for attributes with scoped values.
120 <extension base="am:AttributeDecoderType">
121 <attribute name="scopeDelimiter" type="am:string">
124 The character(s) used to delimit the scoped information from the scope.
132 <complexType name="NameIDAttributeDecoder">
135 Decoder for attributes with NameID values.
139 <extension base="am:AttributeDecoderType">
140 <attribute name="formatter" type="am:string">
143 The pattern used to generate string versions of the attribute's values.
147 <attribute name="defaultQualifiers" type="boolean">
150 Flag controlling whether to default in values for NameQualifier/SPNameQualifier if not set.
158 <complexType name="NameIDFromScopedAttributeDecoder">
161 Decoder for attributes with scoped values that produces a NameID attribute with
162 the scope dropped and the NameQualifiers defaulted.
166 <extension base="am:ScopedAttributeDecoder">
167 <attribute name="format" type="am:anyURI">
170 Value to use as the NameID Format.
174 <attribute name="defaultQualifiers" type="boolean">
177 Flag controlling whether to default in values for NameQualifier/SPNameQualifier if not set.
181 <attribute name="formatter" type="am:string">
184 The pattern used to generate string versions of the attribute's values.