IdPFilterRequirementAttributeIssuerEntityAttributeRegexMatch
Attribute Issuer Entity Attribute Regular Expression Matching Rule
This matching rules evaluates to true if the attribute issuer's metadata contains an Entity Attribute that has a value that matches a given regular expression.
This filter requires that the metadata for the attribute issuer is loaded and available.
This filter only operates on Attribute
elements within the EntityAttributes
, it does not use any Assertion
elements.
Define the Rule
This rule is defined by the element <PolicyRequirementRule xsi:type="saml:AttributeIssuerEntityAttributeRegexMatch">
, for policy requirements rules, and <PermitValueRule xsi:type="saml:AttributeIssuerEntityAttributeRegexMatch">
, for permit value rules, with the following required attributes:
- attributeName - the name of the entity attribute
- attributeValueRegex - the regular expression an entity attribute value must match
This rule also supports the following optional attribute:
- attributeNameFormat - the name format the entity attribute must have; otherwise any format is accepted
Example Policy Requirement Rule using the AttributeIssuerEntityAttributeRegexMatch Function
<PolicyRequirementRule xsi:type="saml:AttributeIssuerEntityAttributeRegexMatch" attributeName="urn:example.org:policy" attributeValueRegex="^urn:example\.org:policy:[^:]*$" />