Hi Johann, We use same "claim management" in SP configuration as well. So these attributes will be available for them also. When it comes to "userid", two SPs which use same claim configuration can have two different claims.
So, to avoid the confusion shall we rename it to something like "feduserid"? Thanks, On Mon, Mar 6, 2017 at 3:09 AM, Johann Nallathamby <[email protected]> wrote: > Hi All, > > Any foreign dialect that we define using claim management, must have two > special attributes indicating the "userid" claim and the "role" claim. > > "userid" claim is required for use cases like authentication and > provisioning. "role" claim is needed for role mapping and access control. > > In C4 we had this at the IDP configuration level. In C5, since we have > extracted all the claim configuration from IDP to "claim management", and > just refer to the dialect alone in IDP configuration, we need to identify > these two special attributes also in the claim dialect management level. > This configuration will be fixed for any real IDP. > > What are your ideas? > > -- > Thanks & Regards, > > *Johann Dilantha Nallathamby* > Technical Lead & Product Lead of WSO2 Identity Server > Governance Technologies Team > WSO2, Inc. > lean.enterprise.middleware > > Mobile - *+94777776950* > Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>* > -- *Thanuja Lakmal* Senior Software Engineer WSO2 Inc. http://wso2.com/ *lean.enterprise.middleware* Mobile: +94715979891 +94758009992
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
