...
The basic:AttributeValueRegex type is defined by the urn:mace:shibboleth:2.0:afp:mf:basic schema, which can be located at http://shibboleth.net/schema/idp/shibboleth-afp-mf-basic.xsd.
Attributes
Three Two attributes may be specified
| Name | Type | Default | Description |
|---|---|---|---|
attributeID | String | none | If this is present then this is a PolicyRule returning true if the attribute of this ID contains the supplied a value with matches If this is not present then this is a Matcher returning that value if it is present amongst the valuesany value that match, and the empty set otherwise |
| regex | Java RegExp | required | The regular expression to match against |
...
Apply this rule if the attribute "uid" contains at least one value which starts with "hn"
| Code Block | ||||
|---|---|---|---|---|
| ||||
<afp:AttributeRule attributeID="uid"> <afp:PermitValueRule xsi:type="basic:AttributeValueRegex" value="^hn.*$" /> </afp:AttributeRule> |
Add any values of the attribute "uid" with start "hn" to its permitted values list.
| Code Block | ||||
|---|---|---|---|---|
| ||||
<afp:PolicyRequirementRule xsi:type="basic:AttributeValueRegex" value="^hn.*$"/> |
Apply this rule if any attribute contains a value which starts with hn
| Code Block | ||||
|---|---|---|---|---|
| ||||
<afp:AttributeRule attributeID="email"> <afp:PermitValueRule xsi:type="basic:AttributeValueRegex" value="^hn.*$" attributeID="uid"/> </afp:AttributeRule> |
If the attribute "uid" contains any attribute value which starts hn then release all values of "email" .