[OPENAM-6886] Administration Guide should document SAML assertions with session properties Created: 18/Sep/15  Updated: 18/Sep/15  Resolved: 18/Sep/15

Status: Resolved
Project: OpenAM
Component/s: documentation
Affects Version/s: 13.0.0
Fix Version/s: None

Type: Bug Priority: Minor
Reporter: aivo.kalu [X] (Inactive) Assignee: Chris Lee
Resolution: Duplicate Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
duplicates OPENAM-4550 document how to build and use a custo... Open


The manual section http://openam.forgerock.org/doc/bootstrap/admin-guide/index.html#sp-assertion-processing should mention that one can also use the session attributes to include in the SAML assertion.

The corresponding code seems to be in the class 'DefaultLibraryIDPAttributeMapper'

                if (localAttributeValues == null) {
                    localAttributeValues = SessionManager.
                        getProvider().getProperty(session, localAttribute);

and it works fine, however, it seems to be undocumented. The closes hint I found from the REST STS section (http://openam.forgerock.org/openam-documentation/openam-doc-source/doc/webhelp/dev-guide/rest-sts-mapping.html), which says that "which looks at profile attributes in the data stores or in the session properties for each published REST STS instance.", but this is entirely different service, I suppose. And it doesn't have any examples neither.

Comment by Mark Craig [ 18/Sep/15 ]

Chris, reassigning this one to you after moving it to the OpenAM project.

Comment by David Goldsmith [ 18/Sep/15 ]

I have added the comments from this Jira into the comments for OPENAM-4550.

Generated at Fri Oct 23 08:30:45 UTC 2020 using Jira 7.13.12#713012-sha1:6e07c38070d5191bbf7353952ed38f111754533a.