0341b05d67b9a0ea35b6ad47a4e9f7af8cefafd7
[java-idp.git] / resources / conf / attribute-resolver.xml
1 <?xml version="1.0" encoding="UTF-8"?>
2
3 <!-- 
4     This file is an EXAMPLE configuration file.  While the configuration presented in this 
5     example file is functional, it isn't very interesting.  However, there are lots of example
6     attributes, encoders, and a couple example data connectors.
7     
8     Not all attribute definitions, data connectors, or principal connectors are demonstrated.
9     Deployers should refer to the Shibboleth 2 documentation for a complete list of components 
10     and their options.
11 -->
12
13
14 <AttributeResolver xmlns="urn:mace:shibboleth:2.0:resolver" xmlns:resolver="urn:mace:shibboleth:2.0:resolver"
15     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:pc="urn:mace:shibboleth:2.0:resolver:pc"
16     xmlns:ad="urn:mace:shibboleth:2.0:resolver:ad" xmlns:dc="urn:mace:shibboleth:2.0:resolver:dc"
17     xmlns:enc="urn:mace:shibboleth:2.0:attribute:encoder" xmlns:sec="urn:mace:shibboleth:2.0:security"
18     xsi:schemaLocation="urn:mace:shibboleth:2.0:resolver classpath:/schema/shibboleth-2.0-attribute-resolver.xsd
19                         urn:mace:shibboleth:2.0:resolver:pc classpath:/schema/shibboleth-2.0-attribute-resolver-pc.xsd
20                         urn:mace:shibboleth:2.0:resolver:ad classpath:/schema/shibboleth-2.0-attribute-resolver-ad.xsd
21                         urn:mace:shibboleth:2.0:resolver:dc classpath:/schema/shibboleth-2.0-attribute-resolver-dc.xsd
22                         urn:mace:shibboleth:2.0:attribute:encoder classpath:/schema/shibboleth-2.0-attribute-encoder.xsd
23                         urn:mace:shibboleth:2.0:security classpath:/schema/shibboleth-2.0-security.xsd">
24
25     <!-- ========================================== -->
26     <!--      Attribute Definitions                 -->
27     <!-- ========================================== -->
28
29     <!-- Schema: Core schema attributes-->
30     <!--
31     <resolver:AttributeDefinition id="uid" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
32         sourceAttributeID="uid">
33         <resolver:Dependency ref="myLDAP" />
34
35         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
36             name="urn:mace:dir:attribute-def:uid" />
37
38         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
39             name="urn:oid:0.9.2342.19200300.100.1.1" friendlyName="uid" />
40     </resolver:AttributeDefinition>
41
42     <resolver:AttributeDefinition id="mail" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
43         sourceAttributeID="mail">
44         <resolver:Dependency ref="myLDAP" />
45
46         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
47             name="urn:mace:dir:attribute-def:mail" />
48
49         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
50             name="urn:oid:0.9.2342.19200300.100.1.3" friendlyName="mail" />
51     </resolver:AttributeDefinition>
52
53     <resolver:AttributeDefinition id="homePhone" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
54         sourceAttributeID="homePhone">
55         <resolver:Dependency ref="myLDAP" />
56
57         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
58             name="urn:mace:dir:attribute-def:homePhone" />
59
60         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
61             name="urn:oid:0.9.2342.19200300.100.1.20" friendlyName="homePhone" />
62     </resolver:AttributeDefinition>
63
64     <resolver:AttributeDefinition id="homePostalAddress" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
65         sourceAttributeID="homePostalAddress">
66         <resolver:Dependency ref="myLDAP" />
67
68         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
69             name="urn:mace:dir:attribute-def:homePostalAddress" />
70
71         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
72             name="urn:oid:0.9.2342.19200300.100.1.39" friendlyName="homePostalAddress" />
73     </resolver:AttributeDefinition>
74
75     <resolver:AttributeDefinition id="mobile" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
76         sourceAttributeID="mobile">
77         <resolver:Dependency ref="myLDAP" />
78
79         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
80             name="urn:mace:dir:attribute-def:mobile" />
81
82         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
83             name="urn:oid:0.9.2342.19200300.100.1.41" friendlyName="mobile" />
84     </resolver:AttributeDefinition>
85
86     <resolver:AttributeDefinition id="pager" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
87         sourceAttributeID="pager">
88         <resolver:Dependency ref="myLDAP" />
89
90         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
91             name="urn:mace:dir:attribute-def:pager" />
92
93         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
94             name="urn:oid:0.9.2342.19200300.100.1.42" friendlyName="pager" />
95     </resolver:AttributeDefinition>
96
97     <resolver:AttributeDefinition id="uniqueId" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
98         sourceAttributeID="uniqueIdentifier">
99         <resolver:Dependency ref="myLDAP" />
100
101         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
102             name="urn:mace:dir:attribute-def:uniqueIdentifier" />
103
104         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
105             name="urn:oid:0.9.2342.19200300.100.1.44" friendlyName="uniqueIdentifier" />
106     </resolver:AttributeDefinition>
107
108     <resolver:AttributeDefinition id="cn" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
109         sourceAttributeID="cn">
110         <resolver:Dependency ref="myLDAP" />
111
112         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
113             name="urn:mace:dir:attribute-def:cn" />
114
115         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
116             name="urn:oid:2.5.4.3" friendlyName="cn" />
117     </resolver:AttributeDefinition>
118
119     <resolver:AttributeDefinition id="surname" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
120         sourceAttributeID="surname">
121         <resolver:Dependency ref="myLDAP" />
122
123         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
124             name="urn:mace:dir:attribute-def:surname" />
125
126         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
127             name="urn:oid:2.5.4.4" friendlyName="surname" />
128     </resolver:AttributeDefinition>
129
130     <resolver:AttributeDefinition id="countryName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
131         sourceAttributeID="countryName">
132         <resolver:Dependency ref="myLDAP" />
133
134         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
135             name="urn:mace:dir:attribute-def:countryName" />
136
137         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
138             name="urn:oid:2.5.4.6" friendlyName="countryName" />
139     </resolver:AttributeDefinition>
140
141     <resolver:AttributeDefinition id="localityName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
142         sourceAttributeID="localityName">
143         <resolver:Dependency ref="myLDAP" />
144
145         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
146             name="urn:mace:dir:attribute-def:localityName" />
147
148         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
149             name="urn:oid:2.5.4.7" friendlyName="localityName" />
150     </resolver:AttributeDefinition>
151
152     <resolver:AttributeDefinition id="stateOrProvinceName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
153         sourceAttributeID="stateOrProvinceName">
154         <resolver:Dependency ref="myLDAP" />
155
156         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
157             name="urn:mace:dir:attribute-def:stateOrProvinceName" />
158
159         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
160             name="urn:oid:2.5.4.8" friendlyName="stateOrProvinceName" />
161     </resolver:AttributeDefinition>
162
163     <resolver:AttributeDefinition id="streetAddress" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
164         sourceAttributeID="streetAddress">
165         <resolver:Dependency ref="myLDAP" />
166
167         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
168             name="urn:mace:dir:attribute-def:streetAddress" />
169
170         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
171             name="urn:oid:2.5.4.9" friendlyName="streetAddress" />
172     </resolver:AttributeDefinition>
173
174     <resolver:AttributeDefinition id="organizationName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
175         sourceAttributeID="organizationName">
176         <resolver:Dependency ref="myLDAP" />
177
178         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
179             name="urn:mace:dir:attribute-def:organizationName" />
180
181         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
182             name="urn:oid:2.5.4.10" friendlyName="organizationName" />
183     </resolver:AttributeDefinition>
184
185     <resolver:AttributeDefinition id="organizationalUnitName" xsi:type="Simple"
186         xmlns="urn:mace:shibboleth:2.0:resolver:ad" sourceAttributeID="organizationalUnitName">
187         <resolver:Dependency ref="myLDAP" />
188
189         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
190             name="urn:mace:dir:attribute-def:organizationalUnitName" />
191
192         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
193             name="urn:oid:2.5.4.11" friendlyName="organizationalUnitName" />
194     </resolver:AttributeDefinition>
195
196     <resolver:AttributeDefinition id="title" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
197         sourceAttributeID="title">
198         <resolver:Dependency ref="myLDAP" />
199
200         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
201             name="urn:mace:dir:attribute-def:title" />
202
203         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
204             name="urn:oid:2.5.4.12" friendlyName="title" />
205     </resolver:AttributeDefinition>
206
207     <resolver:AttributeDefinition id="postalAddress" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
208         sourceAttributeID="postalAddress">
209         <resolver:Dependency ref="myLDAP" />
210
211         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
212             name="urn:mace:dir:attribute-def:postalAddress" />
213
214         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
215             name="urn:oid:2.5.4.16" friendlyName="postalAddress" />
216     </resolver:AttributeDefinition>
217
218     <resolver:AttributeDefinition id="postalCode" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
219         sourceAttributeID="postalCode">
220         <resolver:Dependency ref="myLDAP" />
221
222         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
223             name="urn:mace:dir:attribute-def:postalCode" />
224
225         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
226             name="urn:oid:2.5.4.17" friendlyName="postalCode" />
227     </resolver:AttributeDefinition>
228
229     <resolver:AttributeDefinition id="postOfficeBox" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
230         sourceAttributeID="postOfficeBox">
231         <resolver:Dependency ref="myLDAP" />
232
233         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
234             name="urn:mace:dir:attribute-def:postOfficeBox" />
235
236         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
237             name="urn:oid:2.5.4.18" friendlyName="postOfficeBox" />
238     </resolver:AttributeDefinition>
239
240     <resolver:AttributeDefinition id="telephoneNumber" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
241         sourceAttributeID="telephoneNumber">
242         <resolver:Dependency ref="myLDAP" />
243
244         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
245             name="urn:mace:dir:attribute-def:telephoneNumber" />
246
247         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
248             name="urn:oid:2.5.4.20" friendlyName="telephoneNumber" />
249     </resolver:AttributeDefinition>
250
251     <resolver:AttributeDefinition id="member" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
252         sourceAttributeID="member">
253         <resolver:Dependency ref="myLDAP" />
254
255         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
256             name="urn:mace:dir:attribute-def:member" />
257
258         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
259             name="urn:oid:2.5.4.31" friendlyName="member" />
260     </resolver:AttributeDefinition>
261
262     <resolver:AttributeDefinition id="name" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
263         sourceAttributeID="name">
264         <resolver:Dependency ref="myLDAP" />
265
266         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
267             name="urn:mace:dir:attribute-def:name" />
268
269         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
270             name="urn:oid:2.5.4.41" friendlyName="name" />
271     </resolver:AttributeDefinition>
272
273     <resolver:AttributeDefinition id="givenName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
274         sourceAttributeID="givenName">
275         <resolver:Dependency ref="myLDAP" />
276
277         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
278             name="urn:mace:dir:attribute-def:givenName" />
279
280         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
281             name="urn:oid:2.5.4.42" friendlyName="givenName" />
282     </resolver:AttributeDefinition>
283
284     <resolver:AttributeDefinition id="initials" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
285         sourceAttributeID="initials">
286         <resolver:Dependency ref="myLDAP" />
287
288         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
289             name="urn:mace:dir:attribute-def:initials" />
290
291         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
292             name="urn:oid:2.5.4.43" friendlyName="initials" />
293     </resolver:AttributeDefinition>
294
295     <resolver:AttributeDefinition id="distinguishedName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
296         sourceAttributeID="distinguishedName">
297         <resolver:Dependency ref="myLDAP" />
298
299         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
300             name="urn:mace:dir:attribute-def:distinguishedName" />
301
302         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
303             name="urn:oid:2.5.4.49" friendlyName="distinguishedName" />
304     </resolver:AttributeDefinition>
305      -->
306
307     <!-- Schema: inetOrgPerson attributes-->
308     <!--
309     <resolver:AttributeDefinition id="departmentNumber" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
310         sourceAttributeID="departmentNumber">
311         <resolver:Dependency ref="myLDAP" />
312
313         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
314             name="urn:mace:dir:attribute-def:departmentNumber" />
315
316         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
317             name="urn:oid:2.16.840.1.113730.3.1.2" friendlyName="departmentNumber" />
318     </resolver:AttributeDefinition>
319
320     <resolver:AttributeDefinition id="employeeNumber" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
321         sourceAttributeID="employeeNumber">
322         <resolver:Dependency ref="myLDAP" />
323
324         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
325             name="urn:mace:dir:attribute-def:employeeNumber" />
326
327         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
328             name="urn:oid:2.16.840.1.113730.3.1.3" friendlyName="employeeNumber" />
329     </resolver:AttributeDefinition>
330
331     <resolver:AttributeDefinition id="employeeType" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
332         sourceAttributeID="employeeType">
333         <resolver:Dependency ref="myLDAP" />
334
335         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
336             name="urn:mace:dir:attribute-def:employeeType" />
337
338         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
339             name="urn:oid:2.16.840.1.113730.3.1.4" friendlyName="employeeType" />
340     </resolver:AttributeDefinition>
341
342     <resolver:AttributeDefinition id="jpegPhoto" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
343         sourceAttributeID="jpegPhoto">
344         <resolver:Dependency ref="myLDAP" />
345
346         <resolver:AttributeEncoder xsi:type="SAML1Base64" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
347             name="urn:mace:dir:attribute-def:jpegPhoto" />
348
349         <resolver:AttributeEncoder xsi:type="SAML2Base64" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
350             name="urn:oid:0.9.2342.19200300.100.1.60" friendlyName="jpegPhoto" />
351     </resolver:AttributeDefinition>
352
353     <resolver:AttributeDefinition id="preferredLanguage" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
354         sourceAttributeID="preferredLanguage">
355         <resolver:Dependency ref="myLDAP" />
356
357         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
358             name="urn:mace:dir:attribute-def:preferredLanguage" />
359
360         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
361             name="urn:oid:2.16.840.1.113730.3.1.39" friendlyName="preferredLanguage" />
362     </resolver:AttributeDefinition>
363     -->
364
365     <!-- Schema: eduPerson attributes -->
366     <!--
367     <resolver:AttributeDefinition id="affiliation" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
368         sourceAttributeID="eduPersonAffiliation">
369         <resolver:Dependency ref="staticAttributes" />
370         <resolver:Dependency ref="myLDAP" />
371
372         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
373             name="urn:mace:dir:attribute-def:eduPersonAffiliation" />
374
375         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
376             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" friendlyName="eduPersonAffiliation" />
377     </resolver:AttributeDefinition>
378
379     <resolver:AttributeDefinition id="entitlement" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
380         sourceAttributeID="eduPersonEntitlement">
381         <resolver:Dependency ref="myLDAP" />
382
383         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
384             name="urn:mace:dir:attribute-def:eduPersonEntitlement" />
385
386         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
387             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" friendlyName="eduPersonEntitlement" />
388     </resolver:AttributeDefinition>
389
390     <resolver:AttributeDefinition id="nickname" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
391         sourceAttributeID="eduPersonNickname">
392         <resolver:Dependency ref="myLDAP" />
393
394         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
395             name="urn:mace:dir:attribute-def:eduPersonNickname" />
396
397         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
398             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.2" friendlyName="eduPersonNickname" />
399     </resolver:AttributeDefinition>
400
401     <resolver:AttributeDefinition id="orgDN" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
402         sourceAttributeID="eduPersonOrgDN">
403         <resolver:Dependency ref="myLDAP" />
404
405         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
406             name="urn:mace:dir:attribute-def:eduPersonOrgDN" />
407
408         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
409             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.3" friendlyName="eduPersonOrgDN" />
410     </resolver:AttributeDefinition>
411
412     <resolver:AttributeDefinition id="orgUnitDN" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
413         sourceAttributeID="eduPersonOrgUnitDN">
414         <resolver:Dependency ref="myLDAP" />
415
416         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
417             name="urn:mace:dir:attribute-def:eduPersonOrgUnitDN" />
418
419         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
420             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.4" friendlyName="eduPersonOrgUnitDN" />
421     </resolver:AttributeDefinition>
422
423     <resolver:AttributeDefinition id="primaryAffiliation" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
424         sourceAttributeID="eduPersonPrimaryAffiliation">
425         <resolver:Dependency ref="myLDAP" />
426
427         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
428             name="urn:mace:dir:attribute-def:eduPersonPrimaryAffiliation" />
429
430         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
431             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.5" friendlyName="eduPersonPrimaryAffiliation" />
432     </resolver:AttributeDefinition>
433
434     <resolver:AttributeDefinition id="primaryOrgUnitDN" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
435         sourceAttributeID="eduPersonPrimaryOrgUnitDN">
436         <resolver:Dependency ref="myLDAP" />
437
438         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
439             name="urn:mace:dir:attribute-def:eduPersonPrimaryOrgUnitDN" />
440
441         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
442             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.8" friendlyName="eduPersonPrimaryOrgUnitDN" />
443     </resolver:AttributeDefinition>
444
445     <resolver:AttributeDefinition id="principalName" xsi:type="Scoped" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
446         scope="example.org" sourceAttributeID="eduPersonPrincipalName">
447         <resolver:Dependency ref="myLDAP" />
448
449         <resolver:AttributeEncoder xsi:type="SAML1ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
450             name="urn:mace:dir:attribute-def:eduPersonPrincipalName" />
451
452         <resolver:AttributeEncoder xsi:type="SAML2ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
453             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" friendlyName="eduPersonPrincipalName" />
454     </resolver:AttributeDefinition>
455
456     <resolver:AttributeDefinition id="scopedAffiliation" xsi:type="Scoped" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
457         scope="example.org" sourceAttributeID="eduPersonAffiliation">
458         <resolver:Dependency ref="myLDAP" />
459
460         <resolver:AttributeEncoder xsi:type="SAML1ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
461             name="urn:mace:dir:attribute-def:eduPersonScopedAffiliation" />
462
463         <resolver:AttributeEncoder xsi:type="SAML2ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
464             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" friendlyName="eduPersonScopedAffiliation" />
465     </resolver:AttributeDefinition>
466
467     <resolver:AttributeDefinition id="targetedID" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
468         sourceAttributeID="eduPersonTargetedID">
469         <resolver:Dependency ref="myLDAP" />
470
471         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
472             name="urn:mace:dir:attribute-def:eduPersonTargetedID" />
473
474         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
475             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" friendlyName="eduPersonTargetedID" />
476     </resolver:AttributeDefinition>
477     -->
478
479     <!-- Name Identifier related attributes -->
480     <resolver:AttributeDefinition id="transientId" xsi:type="TransientId" xmlns="urn:mace:shibboleth:2.0:resolver:ad">
481         <resolver:AttributeEncoder xsi:type="SAML1StringNameIdentifier"
482             xmlns="urn:mace:shibboleth:2.0:attribute:encoder" nameFormat="urn:mace:shibboleth:1.0:nameIdentifier" />
483             
484         <resolver:AttributeEncoder xsi:type="SAML1StringNameIdentifier"
485             xmlns="urn:mace:shibboleth:2.0:attribute:encoder" nameFormat="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified" />
486
487         <resolver:AttributeEncoder xsi:type="SAML2StringNameID" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
488             nameFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" />
489     </resolver:AttributeDefinition>
490
491     <!-- ========================================== -->
492     <!--      Data Connectors                       -->
493     <!-- ========================================== -->
494
495     <!-- Example Static Connector -->
496     <!--
497     <resolver:DataConnector id="staticAttributes" xsi:type="Static" xmlns="urn:mace:shibboleth:2.0:resolver:dc">
498         <Attribute id="eduPersonAffiliation">
499             <Value>member</Value>
500         </Attribute>
501         <Attribute id="eduPersonEntitlement">
502             <Value>urn:example.org:entitlement:entitlement1</Value>
503             <Value>urn:mace:dir:entitlement:common-lib-terms</Value>
504         </Attribute>
505     </resolver:DataConnector>
506     -->
507
508     <!-- Example Relational Database Connector -->
509     <!--
510     <resolver:DataConnector id="mySIS" xsi:type="RelationalDatabase" xmlns="urn:mace:shibboleth:2.0:resolver:dc">
511         <ApplicationManagedConnection jdbcDriver="oracle.jdbc.driver.OracleDriver"
512             jdbcURL="jdbc:oracle:thin:@db.example.org:1521:SomeDB" jdbcUserName="myid" jdbcPassword="mypassword" />
513         <QueryTemplate>
514             <![CDATA[
515                 SELECT * FROM student WHERE gzbtpid = $requestContext.principalName
516             ]]>
517         </QueryTemplate>
518
519         <Column columnName="gzbtpid" attributeID="uid" />
520         <Column columnName="fqlft" attributeID="gpa" type="Float" />
521     </resolver:DataConnector>
522      -->
523
524     <!-- Example LDAP Connector -->
525     <!--
526     <resolver:DataConnector id="myLDAP" xsi:type="LDAPDirectory" xmlns="urn:mace:shibboleth:2.0:resolver:dc"
527         ldapURL="ldap://ldap.example.org" baseDN="ou=people,dc=example,dc=org" principal="uid=myservice,ou=system"
528         principalCredential="myServicePassword">
529         <FilterTemplate>
530             <![CDATA[
531                 (uid=$requestContext.principalName)
532             ]]>
533         </FilterTemplate>
534     </resolver:DataConnector>
535     -->
536
537     <!-- ========================================== -->
538     <!--      Principal Connectors                  -->
539     <!-- ========================================== -->
540     <resolver:PrincipalConnector xsi:type="Transient" xmlns="urn:mace:shibboleth:2.0:resolver:pc" id="shibTransient"
541         nameIDFormat="urn:mace:shibboleth:1.0:nameIdentifier" />
542         
543     <resolver:PrincipalConnector xsi:type="Transient" xmlns="urn:mace:shibboleth:2.0:resolver:pc" id="saml1Unspec"
544         nameIDFormat="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified" />
545
546     <resolver:PrincipalConnector xsi:type="Transient" xmlns="urn:mace:shibboleth:2.0:resolver:pc" id="saml2Transient"
547         nameIDFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" />
548
549 </AttributeResolver>