At the core, SURFconext is a service that handles attributes. You will need to get yourself acquainted with attributes as soon as you connect a service to SURFconext. An attribute is a characteristic that describes a user. There are quit a few attributes we can provide but we have a minimal disclosure principle. This means only the absolute minimum amount of information needed to make your service work is transferred to your service. When you request a connection to the Production environment, you must specify the attributes needed and motivate them to make us and users understand why you need them. SURFconext Support will review your request and configure an Attribute Release Policy accordingly. If we think you ask to much, we will discuss this with you.
Info | ||
---|---|---|
| ||
For content providers, SURFconext (in consultation with the National Library of the Netherlands (UKB) and the libraries of the universities of applied sciences (SHB)) applies a separate attribute release policy. Only Persistent NameID, schacHomeOrganization or eduPersonAffiliation are allowed. |
Info |
---|
When Identity Providers are asked if they want to connect to your service, they will be informed of the attributes your service requests. The IdP must agree to the release of these attributes to your service. |
...