/
PrincipalNameConfiguration

PrincipalNameConfiguration

Owned by Scott Cantor
May 02, 2023
1 min read

Namespace: urn:mace:shibboleth:2.0:afp
Schema: http://shibboleth.net/schema/idp/shibboleth-afp.xsd

Overview

The PrincipalName type describes a PolicyRule which returns true if the canonicalized principal used to identify the subject matches the supplied string. See AuthenticationConfiguration for a discussion of principal name canonicalization during authentication. When filtering data resolved for SAML AttributeQuery requests, the value is produced via NameIDConsumptionConfiguration.

Reference

Name

Type

Default

Description

Name

Type

Default

Description

value

String

 

Required, the string to match against

caseSensitive

Boolean

true

Optional, specifies how to perform the comparison

Example

Apply this rule if the principal is "hnelson":

<PolicyRequirementRule xsi:type="PrincipalName" value="hnelson" />

 

Related content

PrincipalNameConfiguration
PrincipalNameConfiguration
Identity Provider 4
More like this
PrincipalNameRegexConfiguration
PrincipalNameRegexConfiguration
Identity Provider 5
More like this
PrincipalNameRegexConfiguration
PrincipalNameRegexConfiguration
Identity Provider 4
More like this
PrincipalNameConfiguration
PrincipalNameConfiguration
Identity Provider 3
More like this
PrincipalNameRegexConfiguration
PrincipalNameRegexConfiguration
Identity Provider 3
More like this
NameIDFormatExactMatchConfiguration
NameIDFormatExactMatchConfiguration
Identity Provider 3
More like this