$customHeader
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Current »

Attribute Issuer in Entity Group Matching Rule

This matching rules evaluates to true if the attribute issuer's metadata is within a given entity group. An entity group is defined as any named <EntitiesDescriptor> element.

This filter requires that the metadata for the attribute issuer is loaded and available.

Define the Rule

This rule is defined by the element <PolicyRequirementRule xsi:type="saml:AttributeIssuerInEntityGroup">, for policy requirements rules, and <PermitValueRule xsi:type="saml:AttributeIssuerInEntityGroup">, for permit value rules, with the following attributes:

  • groupID - the entity group to match
Example Policy Requirement Rule using the AttributeIssuerInEntityGroup Match Function
<PolicyRequirementRule xsi:type="saml:AttributeIssuerInEntityGroup" groupID="urn:example.org" />
  • No labels
$customFooter