Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-11312

Attribute Mapping defined in wsfed remote SP should not be overridden by attribute mapping defined in wsfed OpenAM Hosted IDP

    Details

    • Sprint:
      AM Sustaining Sprint 41, AM Sustaining Sprint 42, AM Sustaining Sprint 43
    • Story Points:
      3
    • Support Ticket IDs:

      Description

      WS-Federation Identity Providers currently only take the IdP side attribute mapping configuration into account. It would be preferable if the default implementation could be updated so that the attribute mapper retrieves the attribute mapping configuration from the remote SP first, and if it was present, use that instead of the IdP level attribute mapping configuration.

      This way the WS-Federation attribute mapping would behave similarly to the SAML2 attribute mapping solution (principle of least astonishment).

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                markdr Mark de Reeper
                Reporter:
                tina.roper Tina Roper
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: