Stop using build-date as version number
[java-idp.git] / resources / conf / attribute-filter.xml
1 <?xml version="1.0" encoding="UTF-8"?>
2
3 <AttributeFilterPolicyGroup id="ShibbolethFilterPolicy" 
4                             xmlns="urn:mace:shibboleth:2.0:afp"
5                             xmlns:basic="urn:mace:shibboleth:2.0:afp:mf:basic"
6                             xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
7                             xsi:schemaLocation="urn:mace:shibboleth:2.0:afp classpath:/schema/shibboleth-2.0-afp.xsd
8                                                 urn:mace:shibboleth:2.0:afp:mf:basic classpath:/schema/shibboleth-2.0-afp-mf-basic.xsd ">
9
10     <!-- 
11           Releases to anyone:
12             * any value of uid
13             * only the member value of affiliation
14     -->
15     <!--
16     <AttributeFilterPolicy id="ReleaseToAnyone">
17         <PolicyRequirementRule xsi:type="basic:ANY" />
18         
19         <AttributeRule attributeID="uid">
20             <PermitValueRule xsi:type="basic:ANY" />
21         </AttributeRule>
22         
23         <AttributeRule attributeID="affiliation">
24             <PermitValueRule value="member"
25                              xsi:type="basic:AttributeValueString"/>
26         </AttributeRule>
27         
28     </AttributeFilterPolicy>
29     -->
30     
31     
32     <!-- 
33           Releases to only SP 1:
34             * any value of uid
35             * scoped primary affiliation if the scope is the IdP 1 and the value is staff, faculty, or student
36             * any value of affiliation
37             * any value of full name
38     -->
39     <!--
40     <AttributeFilterPolicy id="ReleaseToSP1">
41         <PolicyRequirementRule value="urn:example.org:myFederation:sp1" 
42                                xsi:type="basic:AttributeRequesterString" />
43         
44         <AttributeRule attributeID="uid">
45             <PermitValueRule xsi:type="basic:ANY" />
46         </AttributeRule>
47         
48         <AttributeRule attributeID="scopedPrimaryAffiliation">
49             <PermitValueRule xsi:type="basic:AND">
50                 <basic:Rule value="urn:example.org:myFederation:idp1" 
51                             xsi:type="AttributeScopeString" />
52                 <basic:Rule xsi:type="basic:OR">
53                     <basic:Rule value="staff"
54                                 xsi:type="AttributeValueString" />
55                     <basic:Rule value="faculty"
56                                 xsi:type="AttributeValueString" />
57                     <basic:Rule value="student"
58                                 xsi:type="AttributeValueString" />
59                 </basic:Rule>
60             </PermitValueRule>
61         </AttributeRule>
62         
63         <AttributeRule attributeID="affiliation">
64             <PermitValueRule xsi:type="basic:ANY" />
65         </AttributeRule>
66         
67         <AttributeRule attributeID="fullName">
68             <PermitValueRule xsi:type="basic:ANY" />
69         </AttributeRule>
70         
71     </AttributeFilterPolicy>
72     -->
73     
74 </AttributeFilterPolicyGroup>