Page Comparison

Note

This data connector was historically used to produce both the "eduPersonTargetedID" SAML Attribute, which contains a SAML <NameID> element in its values, and to generate SAML 2.0 "persistent" NameID values. The attribute use case is itself generally deprecated because SAML 1 itself is a legacy standard and because the use of the attribute in SAML 2 is both redundant, and overly complex. The NameID use case has been replaced by an equivalent NameID "generator" (see the NameIDGenerationConfiguration topic).

The connector remains supported to facilitate future compliance with emerging profiles for SAML subject identification the Shibboleth community hopes will replace the older options.

...

Name	Type	Default	Description
`sourceAttributeID`	string		DEPRECATED: ID of the IdPAttribute used as input to the connector The the source attribute should now be supplied using the `<InputAttributeDefinition>` and `<InputDataConnector>` elements.
`generatedAttributeID`	string	ID of the connector	ID of the IdPAttribute generated
`salt`	string		Salt, of at least 16 bytes, used in computing initial values
`encoding`^3.3.2	string	BASE64	Controls the eventual text encoding of the value, this should be set to "BASE32" for new deployments (see the warning box about case sensitivity under PersistentNameIDGenerationConfiguration)
`queryTimeout`	XML Duration or a number of milliseconds	PT5S	Timeout for the queries made against the database
`transactionRetries` ^3.2.1	integer	3	Number of retries if insertion fails due to database transaction bugs
`failFast` ^3.2.1	boolean	false	Whether to strictly verify the database's availability and primary key during startup
`retryableErrors` ^3.2.1	space-delimited list of strings	23000 23505	SQLState codes to treat as retryable errors indicating a duplicate insert due to database transaction bugs
`springResource`	resource		Deprecated, useuse the <BeanManagedConnection> element instead

...

Versions Compared

Old Version 31

New Version 32

Key