The Shibboleth IdP V3 software has reached its End of Life and is no longer supported. This documentation is available for historical purposes only. See the IDP4 wiki space for current documentation on the supported version.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Next »

In V3.2.0 the need for multiple namespaces was removed.  With the exception of deprecated Matchers and Policy Rules, everything can now be expressed by the  urn:mace:shibboleth:2.0:afp  schema.  Many of the Matchers and Policy Rules preserve the same body (so xsi:type="basic:AND" becomes xsi:type="AND"), but some have been abbreviated.

The following table shows the appropriate mapping. See AttributeFilterPolicyConfiguration for the documentation

Legacy TypeCurrent TypeNotes
basic:ANDAND 
basic:ANYANY 
basic:AttributeIssuerRegex Deprecated function. The legacy type is still supported in V3, but will cause a warning to be issued.
basic:AttributeIssuerString Deprecated function. The legacy type is still supported in V3, but will cause a warning to be issued.
basic:AttributeRequesterRegexRequesterRegex 
basic:AttributeRequesterStringRequester 
basic:AttributeScopeRegexScopeRegex 
basic:AttributeScopeStringScope 
basic:AttributeValueRegexValueRegex 
basic:AttributeValueStringValue 
basic:AuthenticationMethodRegexAuthenticationMethodRegex

 

basic:AuthenticationMethodStringAuthenticationMethod 
basic:NOTNOT 
basic:NumberOfAttributeValuesNumberOfAttributeValues 
basic:OROR 
basic:PredicatePredicate 
basic:PrincipalNameRegexPrincipalNameRegex 
basic:PrincipalNameStringPrincipalName 
basic:RuleRule 
basic:ScriptScript 
saml:AttributeInMetadataAttributeInMetadata 
saml:AttributeIssuerEntityAttributeExactMatch Never supported in V3. Error issued
saml:AttributeIssuerEntityAttributeRegexMatch Never supported in V3. Error issued
saml:AttributeIssuerInEntityGroup Never supported in V3. Error issued
saml:AttributeIssuerNameIDFormatExactMatch Never supported in V3. Error issued
saml:AttributeRequesterEntityAttributeExactMatch
saml:EntityAttributeExactMatch		EntityAttributeExactMatchAttributeRequesterXYZ types were V2 only and are supported but warn in V3
saml:AttributeRequesterEntityAttributeRegexMatch
saml:EntityAttributeRegexMatch		EntityAttributeRegexMatchNever supported in V3. Error issued
saml:AttributeRequesterInEntityGroup
saml:InEntityGroup 		InEntityGroup Never supported in V3. Error issued

saml:AttributeRequesterNameIDFormatExactMatch
saml:NameIDFormatExactMatch

NameIDFormatExactMatchNever supported in V3. Error issued
saml:MappedAttributeInMetadataMappedAttributeInMetadata 
saml:RegistrationAuthorityRegistrationAuthority 
  • No labels