Overview

The PrincipalName (basic:PrincipalNameString prior to V3.2) type describes a PolicyRule which returns true if the canonicalized principal used to identify the user matches the supplied string. See AuthenticationConfiguration for a discussion of principal name canonicalization during authentication.

Schema Name

The PrincipalName type is defined in the urn:mace:shibboleth:2.0:afp namespace, the schema for which can be located at http://shibboleth.net/schema/idp/shibboleth-afp.xsd

The deprecated basic:PrincipalName type is defined in the urn:mace:shibboleth:2.0:afp:mf:basic namespace, the schema for which can be located at http://shibboleth.net/schema/idp/shibboleth-afp-mf-basic.xsd

Attributes

Name	Type	Default	Description
`value`	String		Required, the string to match against
`ignoreCase`	Boolean	false	Optional, specifies how to perform the comparison

Child Elements

None

Example

<PolicyRequirementRule xsi:type="PrincipalName" value="hnelson" />

Apply this rule if the principal is "hnelson".

Browser not supported