Most of the variables created by the SP are controlled by you, and correspond to mapped attributes. A few are built into the SP and can't be renamed. Currently these are hardwired but in a future version most of them will be produced through the use of the recently introduced attribute extractor of type "Assertion". The built-in variables can be disabled (to avoid duplication with the extractor) with the content setting of
The internal session key assigned to the session associated with the request.
The entityID of the IdP that authenticated the user associated with the request.
The ISO timestamp provided by the IdP indicating the time of authentication.
|Shib-Handler2.6||The self-referential base location of the SP's "handlers" for use by applications in requesting login, logout, etc.|
Shibboleth attributes are by default UTF-8 encoded. However, depending on the servlet contaner configuration they are interpreted as ISO-8859-1 values. This causes problems with non-ASCII characters. The solution is to re-encode attributes, e.g. with:
String value= request.getHeader("givenName"); value= new String( value.getBytes("ISO-8859-1"), "UTF-8");