Overview
This will describe how to get Shibboleth 3.4.x working with Google Apps for Education
...
In the code below:
Replace university.edu which your Google Domain.
...
For instance, mine would be melvin.lasky@university.edu
In your attribute-filter.xml, add the following:
| Code Block | ||||
|---|---|---|---|---|
| ||||
<!-- G Suite (Google Apps) -->
<AttributeFilterPolicy id="google.com/a/university.edu">
<PolicyRequirementRule xsi:type="Requester" value="google.com/a/university.edu" />
<AttributeRule attributeID="mail">
<PermitValueRule xsi:type="ANY" />
</AttributeRule>
</AttributeFilterPolicy> |
Note: Google does not appear to care what attribute you send for mail, just ensure it is the same in the saml-nameid.xml.
And lastly, in your saml-nameid.xml, uncomment the following beans (they are commented out by default):
...