Principal Authentication Method Attribute Definition

The principal authentication method attribute definition exposes all the currently active authentication methods for the user as a multi-valued attribute.

Define the Definition

The definition is defined with the element <resolver:AttributeDefinition xsi:type="PrincipalAuthenticationMethod" xmlns="urn:mace:shibboleth:2.0:resolver:ad"> with the following required attribute:

id - assigns a unique, within the resolver, identifier that may be used to reference this definition

resolver:AttributeDefinition xsi:type="PrincipalAuthenticationMethod" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
                             id="UNIQUE_ID" />

While, like all other attribute definitions, this attribute definition can have dependencies; unlike all other attribute definitions, they are never used. The authentication method comes exclusively from internal IdP state and dependencies are ignored.