Hi Isuru, On Wed, Mar 8, 2017 at 9:08 AM, Isuru Haththotuwa <[email protected]> wrote:
> Hi Johann, > > On Mon, Mar 6, 2017 at 3:09 AM, Johann Nallathamby <[email protected]> > wrote: > >> Hi All, >> >> Any foreign dialect that we define using claim management, must have two >> special attributes indicating the "userid" claim and the "role" claim. >> >> "userid" claim is required for use cases like authentication and >> provisioning. "role" claim is needed for role mapping and access control. >> > Apologies if this is something obvious, what exactly does the user id mean > in a claim context? Is it related to the issuer, or the subject? > It's the subject value(authenticated user id) of the authentication response. > >> >> In C4 we had this at the IDP configuration level. In C5, since we have >> extracted all the claim configuration from IDP to "claim management", and >> just refer to the dialect alone in IDP configuration, we need to identify >> these two special attributes also in the claim dialect management level. >> This configuration will be fixed for any real IDP. >> >> What are your ideas? >> >> -- >> Thanks & Regards, >> >> *Johann Dilantha Nallathamby* >> Technical Lead & Product Lead of WSO2 Identity Server >> Governance Technologies Team >> WSO2, Inc. >> lean.enterprise.middleware >> >> Mobile - *+94777776950* >> Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>* >> >> _______________________________________________ >> Architecture mailing list >> [email protected] >> https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture >> >> > > > -- > Thanks and Regards, > > Isuru H. > +94 716 358 048 <+94%2071%20635%208048>* <http://wso2.com/>* > > > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > Thanks, -- *Thanuja Lakmal* Senior Software Engineer WSO2 Inc. http://wso2.com/ *lean.enterprise.middleware* Mobile: +94715979891 +94758009992
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
