...
The following table describes the translation from OpenID Connect Claims to SAML attributes.
OpenID Connect Claim after 22/11/2019 | OpenID Connect Claim before 22/11/2019SAML Attribute | Description of attribute | sub||
---|---|---|---|---|
sub | OpenID Subject (not available as SAML attribute) | given_name|||
given_name | urn:mace:dir:attribute-def:givenName | Given name | ||
family_name | family_name | urn:mace:dir:attribute-def:sn | Surname | |
name | name | urn:mace:dir:attribute-def:cn | Common name (e.g. Prof.dr. John Doe) | nickname|
nickname | urn:mace:dir:attribute-def:displayName | Display name (e.g. Prof.dr. Jane Doe)preferred_username | ||
preferred_username | urn:mace:dir:attribute-def:displayName | Display name (e.g. Prof.dr. Jane Doe)locale | ||
locale | urn:mace:dir:attribute-def:preferredLanguage | Preferred language (e.g. nl, en)email | ||
urn:mace:dir:attribute-def:mail | Email address | |||
email_verified | Boolean, always "true" when an email address is provided | |||
ou | urn:mace:dir:attribute-def:ou | Organizational Unit | ||
schac_home_organization | schac_home_organization | urn:mace:terena.org:attribute-def:schacHomeOrganization | Organization (e.g. university.nl) | schac_home_organization_type|
schac_home_organization_type | urn:mace:terena.org:attribute-def:schacHomeOrganizationType | Organization type (e.g. educationInstitution, universityHospital) | ||
eduperson_affiliation | edu_person_affiliations | urn:mace:dir:attribute-def:eduPersonAffiliation | Affiliation (student, employee, etc) | |
eduperson_scoped_affiliation | edu_person_scoped_affiliations | urn:mace:dir:attribute-def:eduPersonScopedAffiliation | Scoped affiliation (e.g. student@uniharderwijk.nl, faculty@uniharderwijk.nl ) | |
eduperson_targeted_id | edu_person_targeted_id | urn:mace:dir:attribute-def:eduPersonTargetedID | eduPersonTargetedID (This is a copy of the SURFconext generated NameID)uids | |
uids | urn:mace:dir:attribute-def:uid | UID (unique code for a person that is used as the login name within the institution) | ||
schac_personal_unique_code | schac_personal_unique_codes | urn:schac:attribute-def:schacPersonalUniqueCode | Personal code (e.g. student number) | |
eduperson_principal_name | edu_person_principal_name | urn:mace:dir:attribute-def:eduPersonPrincipalName | EduPersonPrincipleName (This is a scoped identifier. e.g. piet@studenthartingcollege.nl)eduperson_entitlement | |
eduperson_entitlement | urn:mace:dir:attribute-def:eduPersonEntitlement | eduPersonEntitlement (e.g. urn:x-surfnet:surf.nl:surfdrive:quota:100) | ||
edumember_is_member_of | edumember_is_member_of | urn:mace:dir:attribute-def:isMemberOf | isMemberOf | |
eduperson_orcid | not available | urn:mace:dir:attribute-def:eduPersonOrcid | eduPersonOrcid | |
eckid | not available | urn:mace:surf.nl:attribute-def:eckid | eckid | |
surf-crm-idnot available | urn:mace:surf.nl:attribute-def:surf-crm-id | surf-crm-id | -||
- | nlEduPersonOrgUnit | Deprecated and unavailable in both OIDC and SAML | ||
- | - | nlEduPersonStudyBranch | Deprecated and unavailable in both OIDC and SAML | -|
- | nlStudielinkNummer | Deprecated and unavailable in both OIDC and SAML |