[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [saml-dev] Where to pot information inside the SP's metadata?
Hi Peter, Good suggestion. I think it is useful for what I need.I found an actual example on github for what you are sugesting and I will try to implement something similar.
https://github.com/identinetics/saml_schematron/blob/228e224d14ad0754af004935f0a77c424be21a65/testdata/rule10W_fail.xml#L5-L21 Thank you, Andrei Petcu On 08.09.2016 11:27, Peter Schober wrote:
* Andrei Petcu <andreip@posteo.net> [2016-09-08 09:03]:I need to put some information inside the SP's metadata. The information is a country code and I think it is not defined in SAML or in one of it's extensions.https://wiki.oasis-open.org/security/SAML2MetadataAttr allows you to add any SAML Attribute (value(s)) to EntityDescriptors. As to what attribute to use: While 'c' (formal attribute name: "urn:oid:2.5.4.6") https://tools.ietf.org/html/rfc4519#section-2.2 is a standard attribute with standard values ("two-letter ISO 3166 country code") I'd suggest something with more explicit semantics, e.g. somthing that says "place of jurisdiction for the owner of the entity as expressed in the entity's Organization/OrganizationName element". The formal attribute name could be a http URL based on a domain you control. That doesn't need to -- but could -- resolve to its own definition. -peter --------------------------------------------------------------------- To unsubscribe, e-mail: saml-dev-unsubscribe@lists.oasis-open.org For additional commands, e-mail: saml-dev-help@lists.oasis-open.org
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]