When a user logs in to a service providerService Provider, SURFconext sends a so-called SAML assertion to the service provider. This SAML assertion contains a number of statements about the user who is logging in to you service, including his identity, and possibly a number of additional attributes (see below).Service Provider, containing:
- user identifier (NameID)
additional attributes (optional)
Note |
---|
SURFconext's SAML2 implementation adheres to the SAML2int standard. |
On this page section we will show you which attributes SURFconext and their Identity Providers have to offer.
...