...
TheĀ NameIDFormatExactMatch
type is a PolicyRule which returns true if the SAML metadata for a requester indicates support for the configuredĀ <NameID>
format.
Reference
Expand |
---|
|
Name | Type | Required? | Description |
---|
nameIdFormat | URI | Y | The format to check for. Only exact matches against the <md:NameIDFormat> elements are made. |
|
Example
This would match the following metadata excerpt:
Code Block |
---|
|
<PolicyRequirementRule xsi:type="NameIDFormatExactMatch"
nameIdFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" /> |
Code Block |
---|
|
<SPSSODescriptor protocolSupportEnumeration="...">
[...]
<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
[...]
<SPSSODescriptor> |