Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 8 Current »


During the current pilot phase of the SCZ project, things can change based on evolving requirements of current pilot partners and expected future customers or new insights.

While we try to keep this documentation up to date, it could be we forgot something; if you encounter deviations from the information provided, please contact us at .

General information

Sources of attributes

We currently have the following sources of attributes:

  • what we receive from the IdP
  • what is stored within the COmanage CO's and CO's a person is member of

Attributes COmanage releases

Currently we transport the following attributes from IdP when set, unless COManage overrides.

OpenIDSAML maceSAML oid

For mapping SAML to OIDC we use the REFEDS OIDCre  'OpenID Connect SAML mapping' specification.

Attribute candidates

The following attributes are identified as possible candidates, but it has not been decided whether to incorporate them:

  • 'eduPersonUniqueId', 'urn:oid:'
  • 'eduPersonOrcid', 'urn:oid:'
  • 'cn', 'urn:oid:'
  • 'description', 'urn:oid:'
  • 'facsimileTelephoneNumber', 'urn:oid:'
  • 'l', 'urn:oid:'
  • 'labeledURI', 'urn:oid:'
  • 'mobile', 'urn:oid:0.9.2342.19200300.100.1.41'
  • 'o', 'urn:oid:'
  • 'ou', 'urn:oid:'
  • 'postalCode', 'urn:oid:'
  • 'st', 'urn:oid:'
  • 'street', 'urn:oid:'
  • 'telephoneNumber', 'urn:oid:'
  • 'title', 'urn:oid:'
  • 'schacPersonalTitle', 'urn:oid:'

How we supply group information to SP's

COmanage works with CO's (Collaborative Organisation) and COU's (CO Units). Collaborations use one of more CO's and COU's. Information of which CO's and COU's a person is member of, will be translated to the IsMemberOf attribute. We use the AARC 'Guidelines on expressing group membership and role information' to translate the COmanage CO's and COU's to attributes.

How we supply custom attributes to SP's

COmanage allows CO administrators to add custom attributes. This information is translated to the eduPersonEntitlement attribute, and we use the AARC 'Guidelines on expressing group membership and role information' to translate the COmanage CO's and COU's to attributes.
  • No labels