A Serviceprovider can use an API to retrieve extra information on a user, after the user has approved this. The approval is done by a consent screen in the OIDC-gateway. The eduID Resource server (client id myconext.rs) needs to be connected to the Relying Party by Surfconext support. The Relying Party needs to request the correct scope(s).

Available API's:

EndpointParametersScopeDescriptionResponse
https://login.eduid.nl/myconext/api/eduid/eppnschachome
(Add ?schachome=instelling.tld to retrieve only the eppn of the user at this institution)
eduid.nl/eppnIf the user has linked an institution, this will request the eppn(s) for the current user at these institutions

eppn

schachome

https://login.eduid.nl/myconext/api/eduid/eduid-eduid.nl/eduidRetrieves the targeted eduid-number for the requesting Relying Partyeduid
https://login.eduid.nl/myconext/api/eduid/links-eduid.nl/linksReturns an array of all linked accounts for the user

schachome

eppn

displayname


A testing environment for these requests is available at https://login.test.eduid.nl/myconext/api/* 


  • No labels