Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Auth IF attributes #9

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Auth IF attributes #9

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
32 changes: 32 additions & 0 deletions auth/proxy/interface.rst
View file
Open in desktop
Expand Up @@ -9,6 +9,38 @@ There may be multiple protocol implementations.

Auth Proxy must implement Shibboleth protocol.

Attributes
==========

Authentication data should contain only the info to identify person.
For example license info is not included in authentication parameters,
but with the unique id, license info could be asked from another service.

Following attributes must be available always:

Unique identifier
Unique identifies on national level. For example in Finland ‘Oppijanumero’. https://confluence.csc.fi/download/attachments/8127300/Oppijanumero+ja+OID.pdf

Authentication confidence level
How strong the Auth Proxy thinks the authentication confidence level is.

Following attributes should be available always:

Name
First name or given name, and Surname.

Contact information
Email, phone number.

Role
Role in school. Teacher, student, pupil, principal for example.

School
The school identified with school’s national id

Municipality
Code to identify municipality. Municipality list in Finland: http://www02.oph.fi/asiakkaat/rahoitus/perus01k/forms/kuntalista_help1.html


Shibboleth attributes
=====================
Expand Down