Page tree

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


  • urn:collab:person:
    = fixed prefix.
  • {{}}
    = value of schacHomeOrganisation schacHomeOrganization attribute of the user; typically the same for all users of one institution and will be something like "".
  • {{urn:mace:dir:attribute-def:uid}}
    = value of uid attribute of the user. Replace each "@" (at) character in the uid with an "_" (underscore) character.



SAML Response

The result of a successful authentication is a SAML Response. Note that it does not contain an AttributeStatement and that the Assertion element is signed and that the Response element is not signed. Response signing is not currently supported by SURFsecureID, it may be added in future versions.


An example code for using SFO with SimpleSAMLphp can be found at: