Menu
▾
▴
Re: [Unity-idm-discuss] IdP information in registration form
|
From: Krzysztof B. <kb...@un...> - 2018-11-05 19:27:58
|
Hi Sander, W dniu 05.11.2018 o 11:53, Sander Apweiler pisze: > Hi Krzysztof, > > we want to add some attributes, if not provided by the IdP, based on > the IdP itself. Is it possible to compare the IdP in the condition of > automatically assigned settings? > > To give an example. I login with the Juelich IdP and the IdP does not > provide some assurance information. I want to set them during the > account creation. The condition would look like !(eattr contains > 'eduPersonAssurance') && IdP=='fz-juelich.de' > > Do I get the IdP in some variables? Out of the box not - registration quite often done locally without any remote information. But it is possible to set this up: 1. the remote IDP id is available in input translation profile (the 'idp' variable) used by your authenticator, that is authenticating a user to be registered. So first of all save this information into an attribute in input profile, e.g. in an attribute IDP. 2. in the registration form add a collected attribute - IDP. Set this attribute as collected from remote IdP and hidden. Then you can use it in your registration form automation (e.g. rattr['idp']) See respective chapters in manual for more details. HTH, Krzysztof |
