Versions Compared

Old Version 43

changes.mady.by.user trscavo@ncsa.illinois.edu

Saved on

compared with

New Version 44

changes.mady.by.user trscavo@ncsa.illinois.edu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

NameCardinalityDescription

<Entity>

0 or moreThe contents content of this element is an entity ID. If the content matches a candidate entity's entityID, then the condition is true.

<Group>

0 or moreThe contents content of this element is the Name of an <md:EntitiesDescriptor> element. If the content matches a candidate's surrounding group names, then the condition is true.

<Tag>

0 or more

The (required) attribute 'name' provides the <saml:Attribute> Name to match,
The (optional) attribute 'nameFormat' specifies the <saml:Attribute> NameFormat to match. If not specified (or set to urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified), then all formats match.

The content of this element is a series of one or more <Value> elements whose contents specify a specific <saml:AttributeValue> to match (which may be trimmed in accordance with the trim attribute mentioned above).

<ConditionScript><ConditionScript> 3.4                                           

0 or more

An The content of this element is an inline or local script resource implementing that implements Predicate<EntityDescriptor>

Warning
titleDon't forget to configure a child element
If conditionRef is not present , and you neglect to configure at least one child element, the filter will either exclude all entities (if direction="include") or include all entities (if direction="exclude"). In either case, this is probably not what you want to do.

...