Page Comparison

...

Name	Type	Default	Description
`id`	String		Identifier for the IdPAttribute as well as its definition. This is used for logging and to establish dependencies and relationships between connectors and definitions.
`activationConditionRef`	Bean Reference		Bean ID of a condition to decide whether to resolve this definition, see here. Mutually exclusive with `relyingParties`
`relyingParties` ^3.4	space-delimited list		List of entity IDs for which this Attribute Definition should be resolved. Mutually exclusive with `activationConditionRef`
`dependencyOnly`	boolean	false	If set to true, the attribute is not exposed outside the resolution process and is available solely within the resolution process
`sourceAttributeID`	String		DEPRECATED in V3.4 NOTE: This attribute only applies when dependencies are supplied via the deprecated `<Dependency>` Element, and is ignored otherwise. This defines the name of an IdPAttribute used as input to the attribute definition, and can only be applied to some definition types. The source attribute may be the output of another attribute definition or the output of a DataConnector. If any data connectors are used as dependencies, the source attribute MUST be identified or an error will result.
`profileContextStrategyRef`	Bean Reference		DEPRECATED in 4.3 Bean ID of a function injected to override the normal lookup process for the request's ProfileRequestContext

Anchor
CommonChildElements
CommonChildElements
Common Child Elements

...

xsi:type	Function
`Simple`	Copies an input attribute to an output attribute. Typically this is used to 'expose' attributes which are sourced from a DataConnector.
`PrincipalName`	Exposes the subject's canonicalized principal name as an attribute definition.
`Scoped`	Applies a (fixed) scope to the input attribute's values
`Prescoped`	Splits input attribute values into values and scopes
`RegexSplit`	Splits input attribute values according to a regular expression
`ScriptedAttribute`	Generates an attributes using a JSR-223 script
`Mapped`	Allows many to many mapping of input values to output values according to regular expression mapping rules
`Template`	Feeds the input values (potentially from multiple input attributes) into a Velocity template to construct output values
`SubjectDerived` ^3.3	Extracts data from the authenticated Subject(s)
`ContextDerived` ^3.3	Extract arbitrary data from the request context via a Function bean
`PrincipalAuthenticationMethod`	DEPRECATED, exposes the authentication flow used to authenticate the subject for front-channel requests
`TransientId`	DEPRECATED, see the V2 Documentation for details
`CryptoTransientId`	DEPRECATED, see the V2 Documentation for details
`SAML1NameIdentifier`	DEPRECATED, see the V2 Documentation for details
`SAML2NameID`	DEPRECATED, see the V2 Documentation for details

...

Versions Compared

Old Version 48

New Version Current

Key

`id`

`activationConditionRef`

`relyingParties` ^3.4

`dependencyOnly`

`sourceAttributeID`

`profileContextStrategyRef`

Anchor
CommonChildElements
CommonChildElements
Common Child Elements

`Simple`

`PrincipalName`

`Scoped`

`Prescoped`

`RegexSplit`

`ScriptedAttribute`

`Mapped`

`Template`

`SubjectDerived` ^3.3

`ContextDerived` ^3.3

`PrincipalAuthenticationMethod`

`TransientId`

`CryptoTransientId`

`SAML1NameIdentifier`

`SAML2NameID`

Page Comparison

Versions Compared

Key

id

activationConditionRef

relyingParties 3.4

dependencyOnly

sourceAttributeID

profileContextStrategyRef

AnchorCommonChildElementsCommonChildElementsCommon Child Elements

SubjectDerived 3.3

ContextDerived 3.3

PrincipalAuthenticationMethod

TransientId

CryptoTransientId

SAML1NameIdentifier

SAML2NameID

`id`

`activationConditionRef`

`relyingParties` ^3.4

`dependencyOnly`

`sourceAttributeID`

`profileContextStrategyRef`

Anchor
CommonChildElements
CommonChildElements
Common Child Elements

`SubjectDerived` ^3.3

`ContextDerived` ^3.3

`PrincipalAuthenticationMethod`

`TransientId`

`CryptoTransientId`

`SAML1NameIdentifier`

`SAML2NameID`