Versions Compared

Version Old Version 8 New Version 9
Changes made by

Rod Widdowson

Rod Widdowson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Namespace: urn:mace:shibboleth:2.0:afp
Schema: http://shibboleth.net/schema/idp/shibboleth-afp.xsd

Overview

The IssuerRegex type is a PolicyRule which returns true if the entityID of the party issuing the attributes matches the supplied Pattern.

The primary use case for this is proxying when filtering inbound attributes, or in "multi-homing" scenarios in which the IdP may be representing multiple sources of attributes itself under different names.

Reference

Localtabgroup

Localtab live
titleXML Attributes

NameTypeDefaultDescription
regexPattern
Required, the Java regular expression to match against
caseSensitivebooleantrueWhether the comparison is case sensitive


Example

Apply this rule if the IdP entityID starts with "https://idp.example.org/":

Code Block
<PolicyRequirementRule xsi:type="IssuerRegex" regex="^https://idp\.example\.org/.*$" />