Attribute Issuer Entity Attribute Regular Expression Matching Rule

This matching rules evaluates to true if the attribute issuer's metadata contains an Entity Attribute that has a value that matches a given regular expression.

This filter requires that the metadata for the attribute issuer is loaded and available.
This filter only operates on Attribute elements within the EntityAttributes, it does not use any Assertion elements.

Define the Rule

This rule is defined by the element <PolicyRequirementRule xsi:type="saml:AttributeIssuerEntityAttributeRegexMatch">, for policy requirements rules, and <PermitValueRule xsi:type="saml:AttributeIssuerEntityAttributeRegexMatch">, for permit value rules, with the following required attributes:

attributeName - the name of the entity attribute
attributeValueRegex - the regular expression an entity attribute value must match

This rule also supports the following optional attribute:

attributeNameFormat - the name format the entity attribute must have; otherwise any format is accepted

Example Policy Requirement Rule using the AttributeIssuerEntityAttributeRegexMatch Function

<PolicyRequirementRule xsi:type="saml:AttributeIssuerEntityAttributeRegexMatch" 
                       attributeName="urn:example.org:policy"
                       attributeValueRegex="^urn:example\.org:policy:[^:]*$" />

Browser not supported