Hi,
Please find the following suggested approach for introducing multiple SP
standard claim dialects for IS.
Following UI changes will be affected (i.e. please refer the following
draft image).
- With this implementation, in order to configure SP requested claims,
there will be an option for using a standard claim dialect.
- If that is configured, can select multiple SP standard claim dialects
from UI.
- Requested Claims and Subject Claim URI will be populated with all the
claims configured in all the SP standard dialects.
Following database schema change will be affected.
- SP standard dialects will be stored in SP_APP table in following field
as comma separated values.
SP_DIALECT VARCHAR (1024)
Please find the following scenarios of requested attribute configurations
which are to be considered with this implementation.
- *Wso2 claim dialect is selected and configured requested claims*
- This is as per the current behavior. We will be sending all the
requested claims in the response.
- *Other standard dialects are selected and configured requested
claims*
- All the configured requested claims will be sent in the response.
- *Other standard dialects are selected and not configured requested
claims*
- This means there are no requested claim configurations in SP.
- If the claims are requesting from the authentication request, this
standard dialects will be used to retrieve the user claims (i.e.
by mapping
with the relevant wso2 claim URIs)
- If the claims are not requesting from the authentication request,
all the claims configured under all the SP standard dialects will be
considered as requested claims.
Appreciate your suggestions and comments on the above approach.
Thanks and Regards
--
Indunil Upeksha Rathnayake
Software Engineer | WSO2 Inc
Email [email protected]
Mobile 0772182255
_______________________________________________
Architecture mailing list
[email protected]
https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
