Page History

...

urn:mace	urn:mace:dir:attribute-def:eduPersonPrincipalName
urn:oid	urn:oid:1.3.6.1.4.1.5923.1.1.1.6
Multiplicity	single-valued
Data type	UTF8 String of the form `user@domain`. Domain must be equal to or a subdomain of schacHomeOrganization.
Description	Unique identifier for a user.
Examples	piet.jønsen@example.edu not.a@vålîd.émail.addreß
Notes	Do not use as an email address! All though uniquely identifying a user, it is not guaranteed that PrincipalName is persistent over sessions. Do not use to identify users. Use NameId for this. The allowed domain part for your institution will be is stored in the SURFconext configuration of SURFconext. So it we can be checked check that no illegal values are sent.

...

urn:mace	urn:mace:dir:attribute-def:uid
urn:oid	urn:oid:0.9.2342.19200300.100.1.1
Multiplicity	multi-valued
Data type	UTF8 string (max 256 chars); do not use space or `@`-sign.
Description	Unique code Code for a person, used as login name within his institution.
Examples	s9603145 piet flåp@example.edu
Notes	The uid is not a is not a unique identifier for SURFconext users. Uid values are at most unique for each within SURFconext, only within the specific IdP. Ideally the uid is not only a login name/code but also an identifier that is guaranteed as being unique within the institution over the course of time. At the moment, there is no such guarantee. Use the NameId for as a unique identifiers identifier in SURFconext rather than uid. Use the eduPersonPrincipalName attribute if a human-readable unique identifier is required. A uid may contain any unicode character. E.g., "`org:surfnet.nl:joe von stühl`" is a valid uid. SURFconext translates @-characters signs in the uid to underscores before when constructing the NameID.

preferredLanguage

urn:mace	urn:mace:dir:attribute-def:preferredLanguage
urn:oid	urn:oid:2.16.840.1.113730.3.1.39
Multiplicity	single-valued
Data type	RFC2798 BCP47
Description	a two-letter abbreviation for the preferred language according to the , conform ISO 639 language abbreviation code table; no subcodes.
Examples	nl en
Notes	Used to indicate an individual's preferred written or spoken language. This is Can be useful for international correspondence or human-computer interaction. Values for this attribute type MUST conform to the definition of the Accept-Language header field defined in RFC 2068 with one exception: ?the value , only "`:`" should be omitted.

urn:mace	urn:mace:dir:attribute-def:eduPersonTargetedID
urn:oid	urn:oid:1.3.6.1.4.1.5923.1.1.1.10
Multiplicity	single-valued
Data type	UTF8 string (unbounded)
Description	The attribute eduPersonTargetedID EduPersonTargetedID is a copy of the Subject -> NameID which is generated by SURFconext itself. When an Identity Provider IdP provides the eduPersonTargetedID itself, it is always overwritten by SURFconext.
ExamplesExample	bd09168cf0c2e675b2def0ade6f50b7d4bb4aae
Notes Note	This attribute is created because the Subject -> NameID itself is not part of the SAML v2.0 response and therefore only is available for the application if the local SAML implementation explicitly support this. Within SURFconext the Subject -> NameID is explicitly copied into the `eduPersonTargetedID` attribute, in order for the identifier to be used like any other attribute.

urn:mace	urn:mace:dir:attribute-def:eduPersonOrcid
urn:oid	urn:oid:1.3.6.1.4.1.5923.1.1.1.16
Multiplicity	multi-valued
Data type	URL, registered with ORCID.org
Description	The ORCID is a persistent digital identifier that distinguishes distinguishing the account holder from every other researcher. Through integration in research workflows such as manuscript and grant submission, the ORCID identifier researchers. EduPersonOrcid supports automated linkages between the account holder and his /her professional activities, ensuring that the account holder's his work is recognized. Values MUST Must be valid ORCID identifiers identifier in the ORCID-preferred URL representation, i.e. http://orcid.org/0000-0002-1825-0097.
ExamplesExample	`http://orcid.org/0000-0002-1825-0097` `http://orcid.org/0000-0001-9351-8252`
Note	Notes	For more information see : https://www.surf.nl/en/news/2016/02/global-author-identifier-service-orcid-now-available-through-surfconext-and-edugain.html.