Hi Krzysztof,
thank you very much!
Cheers,
Sander
On Tue, 2020-12-01 at 13:37 +0100, Krzysztof Benedyczak wrote:
> Hi Sander,
>
> W dniu 01.12.2020 o 08:26, Sander Apweiler pisze:
> > Dear Krzysztof,
> >
> > we have connected our instance to an OIDC IdP. This IdP releases
> > email
> > and email_verified attributes. Currently we map only the email:
> >
> > Condition: true
> > Action: mapAttribute
> > Action parameters:
> > unityAttribute = email
> > group = /
> > expression = attr['email']
> > effect = CREATE_OR_UPDATE
> >
> > Can we "map" the email_verified information too? We want to skip
> > the
> > verification in case this is already done by the IdP. The condition
> > part is no problem, but how can we set the information to email
> > attribute?
>
> Sure, you can. See
> https://www.unity-idm.eu/documentation/unity-3.4.0/manual.html#_e_mail_confirmations
> ,
> section 7.4.4 precisely. You would need to add the "[CONFIRMED]"
> suffix
> basing on the email_verified attribute, sth. like
>
> attr['email'] + (attr['email_verified'] == 'true' ? '[CONFIRMED]' :
> '')
>
> - you should be able to fine tune that depending on types, whether
> this
> email_verified is always present or optional etc.
>
>
> Cheers,
> Krzysztof
>
>
--
Federated Systems and Data
Juelich Supercomputing Centre
phone: +49 2461 61 8847
fax: +49 2461 61 6656
email: sa....@fz...
----------------------------------------------------------------------
-----------------------------------------------------------------------
Forschungszentrum Juelich GmbH
52425 Juelich
Sitz der Gesellschaft: Juelich
Eingetragen im Handelsregister des Amtsgerichts Dueren Nr. HR B 3498
Vorsitzender des Aufsichtsrats: MinDir Volker Rieke
Geschaeftsfuehrung: Prof. Dr.-Ing. Wolfgang Marquardt (Vorsitzender),
Karsten Beneke (stellv. Vorsitzender), Prof. Dr.-Ing. Harald Bolt
-----------------------------------------------------------------------
-----------------------------------------------------------------------
|
