fix up examples of scoped attributes
[java-idp.git] / resources / conf / attribute-resolver.xml
1 <?xml version="1.0" encoding="UTF-8"?>
2
3 <!-- 
4     This file is an EXAMPLE configuration file.  Deployers should NOT attempt to use this 
5     without modifying it for their environment.  In paticular, deployers will need to edit 
6     data connector configurations.
7     
8     Not all attribute definitions, data connectors, or principal connectors are demonstrated.
9     Deployers should refer to the Shibboleth 2 documentation for a complete list of components 
10     and their options.
11 -->
12
13
14 <AttributeResolver xmlns="urn:mace:shibboleth:2.0:resolver" xmlns:resolver="urn:mace:shibboleth:2.0:resolver"
15     xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:pc="urn:mace:shibboleth:2.0:resolver:pc"
16     xmlns:ad="urn:mace:shibboleth:2.0:resolver:ad" xmlns:dc="urn:mace:shibboleth:2.0:resolver:dc"
17     xmlns:enc="urn:mace:shibboleth:2.0:attribute:encoder"
18     xsi:schemaLocation="urn:mace:shibboleth:2.0:resolver classpath:/schema/shibboleth-2.0-attribute-resolver.xsd
19                         urn:mace:shibboleth:2.0:resolver:pc classpath:/schema/shibboleth-2.0-attribute-resolver-pc.xsd
20                         urn:mace:shibboleth:2.0:resolver:ad classpath:/schema/shibboleth-2.0-attribute-resolver-ad.xsd
21                         urn:mace:shibboleth:2.0:resolver:dc classpath:/schema/shibboleth-2.0-attribute-resolver-dc.xsd
22                         urn:mace:shibboleth:2.0:attribute:encoder classpath:/schema/shibboleth-2.0-attribute-encoder.xsd">
23
24     <!-- ========================================== -->
25     <!--      Attribute Definitions                 -->
26     <!-- ========================================== -->
27
28     <!-- Schema: Core schema attributes-->
29     <resolver:AttributeDefinition id="uid" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
30         sourceAttributeID="uid">
31         <resolver:Dependency ref="myLDAP" />
32
33         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
34             name="urn:mace:dir:attribute-def:uid" />
35
36         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
37             name="urn:oid:0.9.2342.19200300.100.1.1" friendlyName="uid" />
38     </resolver:AttributeDefinition>
39
40     <resolver:AttributeDefinition id="mail" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
41         sourceAttributeID="mail">
42         <resolver:Dependency ref="myLDAP" />
43
44         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
45             name="urn:mace:dir:attribute-def:mail" />
46
47         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
48             name="urn:oid:0.9.2342.19200300.100.1.3" friendlyName="mail" />
49     </resolver:AttributeDefinition>
50
51     <resolver:AttributeDefinition id="homePhone" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
52         sourceAttributeID="homePhone">
53         <resolver:Dependency ref="myLDAP" />
54
55         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
56             name="urn:mace:dir:attribute-def:homePhone" />
57
58         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
59             name="urn:oid:0.9.2342.19200300.100.1.20" friendlyName="homePhone" />
60     </resolver:AttributeDefinition>
61
62     <resolver:AttributeDefinition id="homePostalAddress" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
63         sourceAttributeID="homePostalAddress">
64         <resolver:Dependency ref="myLDAP" />
65
66         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
67             name="urn:mace:dir:attribute-def:homePostalAddress" />
68
69         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
70             name="urn:oid:0.9.2342.19200300.100.1.39" friendlyName="homePostalAddress" />
71     </resolver:AttributeDefinition>
72
73     <resolver:AttributeDefinition id="mobile" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
74         sourceAttributeID="mobile">
75         <resolver:Dependency ref="myLDAP" />
76
77         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
78             name="urn:mace:dir:attribute-def:mobile" />
79
80         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
81             name="urn:oid:0.9.2342.19200300.100.1.41" friendlyName="mobile" />
82     </resolver:AttributeDefinition>
83
84     <resolver:AttributeDefinition id="pager" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
85         sourceAttributeID="pager">
86         <resolver:Dependency ref="myLDAP" />
87
88         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
89             name="urn:mace:dir:attribute-def:pager" />
90
91         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
92             name="urn:oid:0.9.2342.19200300.100.1.42" friendlyName="pager" />
93     </resolver:AttributeDefinition>
94
95     <resolver:AttributeDefinition id="uniqueId" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
96         sourceAttributeID="uniqueIdentifier">
97         <resolver:Dependency ref="myLDAP" />
98
99         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
100             name="urn:mace:dir:attribute-def:uniqueIdentifier" />
101
102         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
103             name="urn:oid:0.9.2342.19200300.100.1.44" friendlyName="uniqueIdentifier" />
104     </resolver:AttributeDefinition>
105
106     <resolver:AttributeDefinition id="cn" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
107         sourceAttributeID="cn">
108         <resolver:Dependency ref="myLDAP" />
109
110         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
111             name="urn:mace:dir:attribute-def:cn" />
112
113         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
114             name="urn:oid:2.5.4.3" friendlyName="cn" />
115     </resolver:AttributeDefinition>
116
117     <resolver:AttributeDefinition id="surname" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
118         sourceAttributeID="surname">
119         <resolver:Dependency ref="myLDAP" />
120
121         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
122             name="urn:mace:dir:attribute-def:surname" />
123
124         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
125             name="urn:oid:2.5.4.4" friendlyName="surname" />
126     </resolver:AttributeDefinition>
127
128     <resolver:AttributeDefinition id="countryName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
129         sourceAttributeID="countryName">
130         <resolver:Dependency ref="myLDAP" />
131
132         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
133             name="urn:mace:dir:attribute-def:countryName" />
134
135         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
136             name="urn:oid:2.5.4.6" friendlyName="countryName" />
137     </resolver:AttributeDefinition>
138
139     <resolver:AttributeDefinition id="localityName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
140         sourceAttributeID="localityName">
141         <resolver:Dependency ref="myLDAP" />
142
143         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
144             name="urn:mace:dir:attribute-def:localityName" />
145
146         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
147             name="urn:oid:2.5.4.7" friendlyName="localityName" />
148     </resolver:AttributeDefinition>
149
150     <resolver:AttributeDefinition id="stateOrProvinceName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
151         sourceAttributeID="stateOrProvinceName">
152         <resolver:Dependency ref="myLDAP" />
153
154         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
155             name="urn:mace:dir:attribute-def:stateOrProvinceName" />
156
157         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
158             name="urn:oid:2.5.4.8" friendlyName="stateOrProvinceName" />
159     </resolver:AttributeDefinition>
160
161     <resolver:AttributeDefinition id="streetAddress" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
162         sourceAttributeID="streetAddress">
163         <resolver:Dependency ref="myLDAP" />
164
165         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
166             name="urn:mace:dir:attribute-def:streetAddress" />
167
168         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
169             name="urn:oid:2.5.4.9" friendlyName="streetAddress" />
170     </resolver:AttributeDefinition>
171
172     <resolver:AttributeDefinition id="organizationName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
173         sourceAttributeID="organizationName">
174         <resolver:Dependency ref="myLDAP" />
175
176         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
177             name="urn:mace:dir:attribute-def:organizationName" />
178
179         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
180             name="urn:oid:2.5.4.10" friendlyName="organizationName" />
181     </resolver:AttributeDefinition>
182
183     <resolver:AttributeDefinition id="organizationalUnitName" xsi:type="Simple"
184         xmlns="urn:mace:shibboleth:2.0:resolver:ad" sourceAttributeID="organizationalUnitName">
185         <resolver:Dependency ref="myLDAP" />
186
187         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
188             name="urn:mace:dir:attribute-def:organizationalUnitName" />
189
190         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
191             name="urn:oid:2.5.4.11" friendlyName="organizationalUnitName" />
192     </resolver:AttributeDefinition>
193
194     <resolver:AttributeDefinition id="title" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
195         sourceAttributeID="title">
196         <resolver:Dependency ref="myLDAP" />
197
198         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
199             name="urn:mace:dir:attribute-def:title" />
200
201         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
202             name="urn:oid:2.5.4.12" friendlyName="title" />
203     </resolver:AttributeDefinition>
204
205     <resolver:AttributeDefinition id="postalAddress" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
206         sourceAttributeID="postalAddress">
207         <resolver:Dependency ref="myLDAP" />
208
209         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
210             name="urn:mace:dir:attribute-def:postalAddress" />
211
212         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
213             name="urn:oid:2.5.4.16" friendlyName="postalAddress" />
214     </resolver:AttributeDefinition>
215
216     <resolver:AttributeDefinition id="postalCode" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
217         sourceAttributeID="postalCode">
218         <resolver:Dependency ref="myLDAP" />
219
220         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
221             name="urn:mace:dir:attribute-def:postalCode" />
222
223         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
224             name="urn:oid:2.5.4.17" friendlyName="postalCode" />
225     </resolver:AttributeDefinition>
226
227     <resolver:AttributeDefinition id="postOfficeBox" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
228         sourceAttributeID="postOfficeBox">
229         <resolver:Dependency ref="myLDAP" />
230
231         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
232             name="urn:mace:dir:attribute-def:postOfficeBox" />
233
234         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
235             name="urn:oid:2.5.4.18" friendlyName="postOfficeBox" />
236     </resolver:AttributeDefinition>
237
238     <resolver:AttributeDefinition id="telephoneNumber" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
239         sourceAttributeID="telephoneNumber">
240         <resolver:Dependency ref="myLDAP" />
241
242         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
243             name="urn:mace:dir:attribute-def:telephoneNumber" />
244
245         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
246             name="urn:oid:2.5.4.20" friendlyName="telephoneNumber" />
247     </resolver:AttributeDefinition>
248
249     <resolver:AttributeDefinition id="member" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
250         sourceAttributeID="member">
251         <resolver:Dependency ref="myLDAP" />
252
253         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
254             name="urn:mace:dir:attribute-def:member" />
255
256         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
257             name="urn:oid:2.5.4.31" friendlyName="member" />
258     </resolver:AttributeDefinition>
259
260     <resolver:AttributeDefinition id="name" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
261         sourceAttributeID="name">
262         <resolver:Dependency ref="myLDAP" />
263
264         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
265             name="urn:mace:dir:attribute-def:name" />
266
267         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
268             name="urn:oid:2.5.4.41" friendlyName="name" />
269     </resolver:AttributeDefinition>
270
271     <resolver:AttributeDefinition id="givenName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
272         sourceAttributeID="givenName">
273         <resolver:Dependency ref="myLDAP" />
274
275         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
276             name="urn:mace:dir:attribute-def:givenName" />
277
278         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
279             name="urn:oid:2.5.4.42" friendlyName="givenName" />
280     </resolver:AttributeDefinition>
281
282     <resolver:AttributeDefinition id="initials" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
283         sourceAttributeID="initials">
284         <resolver:Dependency ref="myLDAP" />
285
286         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
287             name="urn:mace:dir:attribute-def:initials" />
288
289         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
290             name="urn:oid:2.5.4.43" friendlyName="initials" />
291     </resolver:AttributeDefinition>
292
293     <resolver:AttributeDefinition id="distinguishedName" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
294         sourceAttributeID="distinguishedName">
295         <resolver:Dependency ref="myLDAP" />
296
297         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
298             name="urn:mace:dir:attribute-def:distinguishedName" />
299
300         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
301             name="urn:oid:2.5.4.49" friendlyName="distinguishedName" />
302     </resolver:AttributeDefinition>
303
304     <!-- Schema: inetOrgPerson attributes-->
305     <resolver:AttributeDefinition id="departmentNumber" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
306         sourceAttributeID="departmentNumber">
307         <resolver:Dependency ref="myLDAP" />
308
309         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
310             name="urn:mace:dir:attribute-def:departmentNumber" />
311
312         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
313             name="urn:oid:2.16.840.1.113730.3.1.2" friendlyName="departmentNumber" />
314     </resolver:AttributeDefinition>
315
316     <resolver:AttributeDefinition id="employeeNumber" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
317         sourceAttributeID="employeeNumber">
318         <resolver:Dependency ref="myLDAP" />
319
320         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
321             name="urn:mace:dir:attribute-def:employeeNumber" />
322
323         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
324             name="urn:oid:2.16.840.1.113730.3.1.3" friendlyName="employeeNumber" />
325     </resolver:AttributeDefinition>
326
327     <resolver:AttributeDefinition id="employeeType" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
328         sourceAttributeID="employeeType">
329         <resolver:Dependency ref="myLDAP" />
330
331         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
332             name="urn:mace:dir:attribute-def:employeeType" />
333
334         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
335             name="urn:oid:2.16.840.1.113730.3.1.4" friendlyName="employeeType" />
336     </resolver:AttributeDefinition>
337
338     <resolver:AttributeDefinition id="jpegPhoto" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
339         sourceAttributeID="jpegPhoto">
340         <resolver:Dependency ref="myLDAP" />
341
342         <resolver:AttributeEncoder xsi:type="SAML1Base64" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
343             name="urn:mace:dir:attribute-def:jpegPhoto" />
344
345         <resolver:AttributeEncoder xsi:type="SAML2Base64" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
346             name="urn:oid:0.9.2342.19200300.100.1.60" friendlyName="jpegPhoto" />
347     </resolver:AttributeDefinition>
348
349     <resolver:AttributeDefinition id="preferredLanguage" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
350         sourceAttributeID="preferredLanguage">
351         <resolver:Dependency ref="myLDAP" />
352
353         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
354             name="urn:mace:dir:attribute-def:preferredLanguage" />
355
356         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
357             name="urn:oid:2.16.840.1.113730.3.1.39" friendlyName="preferredLanguage" />
358     </resolver:AttributeDefinition>
359
360     <!-- Schema: eduPerson attributes-->
361     <resolver:AttributeDefinition id="affiliation" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
362         sourceAttributeID="eduPersonAffiliation">
363         <resolver:Dependency ref="staticAttributes" />
364         <resolver:Dependency ref="myLDAP" />
365
366         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
367             name="urn:mace:dir:attribute-def:eduPersonAffiliation" />
368
369         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
370             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" friendlyName="eduPersonAffiliation" />
371     </resolver:AttributeDefinition>
372
373     <resolver:AttributeDefinition id="entitlement" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
374         sourceAttributeID="eduPersonEntitlement">
375         <resolver:Dependency ref="myLDAP" />
376
377         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
378             name="urn:mace:dir:attribute-def:eduPersonEntitlement" />
379
380         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
381             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" friendlyName="eduPersonEntitlement" />
382     </resolver:AttributeDefinition>
383
384     <resolver:AttributeDefinition id="nickname" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
385         sourceAttributeID="eduPersonNickname">
386         <resolver:Dependency ref="myLDAP" />
387
388         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
389             name="urn:mace:dir:attribute-def:eduPersonNickname" />
390
391         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
392             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.2" friendlyName="eduPersonNickname" />
393     </resolver:AttributeDefinition>
394
395     <resolver:AttributeDefinition id="orgDN" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
396         sourceAttributeID="eduPersonOrgDN">
397         <resolver:Dependency ref="myLDAP" />
398
399         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
400             name="urn:mace:dir:attribute-def:eduPersonOrgDN" />
401
402         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
403             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.3" friendlyName="eduPersonOrgDN" />
404     </resolver:AttributeDefinition>
405
406     <resolver:AttributeDefinition id="orgUnitDN" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
407         sourceAttributeID="eduPersonOrgUnitDN">
408         <resolver:Dependency ref="myLDAP" />
409
410         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
411             name="urn:mace:dir:attribute-def:eduPersonOrgUnitDN" />
412
413         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
414             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.4" friendlyName="eduPersonOrgUnitDN" />
415     </resolver:AttributeDefinition>
416
417     <resolver:AttributeDefinition id="primaryAffiliation" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
418         sourceAttributeID="eduPersonPrimaryAffiliation">
419         <resolver:Dependency ref="myLDAP" />
420
421         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
422             name="urn:mace:dir:attribute-def:eduPersonPrimaryAffiliation" />
423
424         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
425             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.5" friendlyName="eduPersonPrimaryAffiliation" />
426     </resolver:AttributeDefinition>
427
428     <resolver:AttributeDefinition id="primaryOrgUnitDN" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
429         sourceAttributeID="eduPersonPrimaryOrgUnitDN">
430         <resolver:Dependency ref="myLDAP" />
431
432         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
433             name="urn:mace:dir:attribute-def:eduPersonPrimaryOrgUnitDN" />
434
435         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
436             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.8" friendlyName="eduPersonPrimaryOrgUnitDN" />
437     </resolver:AttributeDefinition>
438
439     <resolver:AttributeDefinition id="principalName" xsi:type="Scoped" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
440         scope="example.org" sourceAttributeID="eduPersonPrincipalName">
441         <resolver:Dependency ref="myLDAP" />
442
443         <resolver:AttributeEncoder xsi:type="SAML1ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
444             name="urn:mace:dir:attribute-def:eduPersonPrincipalName" />
445
446         <resolver:AttributeEncoder xsi:type="SAML2ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
447             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" friendlyName="eduPersonPrincipalName" />
448     </resolver:AttributeDefinition>
449
450     <resolver:AttributeDefinition id="scopedAffiliation" xsi:type="Scoped" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
451         scope="example.org" sourceAttributeID="eduPersonAffiliation">
452         <resolver:Dependency ref="myLDAP" />
453
454         <resolver:AttributeEncoder xsi:type="SAML1ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
455             name="urn:mace:dir:attribute-def:eduPersonScopedAffiliation" />
456
457         <resolver:AttributeEncoder xsi:type="SAML2ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
458             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" friendlyName="eduPersonScopedAffiliation" />
459     </resolver:AttributeDefinition>
460
461     <resolver:AttributeDefinition id="targetedID" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad"
462         sourceAttributeID="eduPersonTargetedID">
463         <resolver:Dependency ref="myLDAP" />
464
465         <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
466             name="urn:mace:dir:attribute-def:eduPersonTargetedID" />
467
468         <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
469             name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" friendlyName="eduPersonTargetedID" />
470     </resolver:AttributeDefinition>
471
472
473     <!-- Name Identifier related attributes -->
474     <resolver:AttributeDefinition id="transientId" xsi:type="TransientId" xmlns="urn:mace:shibboleth:2.0:resolver:ad">
475         <resolver:AttributeEncoder xsi:type="SAML1StringNameIdentifier"
476             xmlns="urn:mace:shibboleth:2.0:attribute:encoder" nameFormat="urn:mace:shibboleth:1.0:nameIdentifier" />
477
478         <resolver:AttributeEncoder xsi:type="SAML2StringNameID" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
479             nameFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" />
480     </resolver:AttributeDefinition>
481
482     <!-- ========================================== -->
483     <!--      Data Connectors                       -->
484     <!-- ========================================== -->
485
486     <!-- Example Static Connector -->
487     <resolver:DataConnector id="staticAttributes" xsi:type="Static" xmlns="urn:mace:shibboleth:2.0:resolver:dc">
488         <Attribute id="eduPersonAffiliation">
489             <Value>member</Value>
490         </Attribute>
491         <Attribute id="eduPersonEntitlement">
492             <Value>urn:example.org:entitlement:entitlement1</Value>
493             <Value>urn:mace:dir:entitlement:common-lib-terms</Value>
494         </Attribute>
495     </resolver:DataConnector>
496
497     <!-- Example Relational Database Connector -->
498     <resolver:DataConnector id="mySIS" xsi:type="RelationalDatabase" xmlns="urn:mace:shibboleth:2.0:resolver:dc"
499         validationQuery="SELECT 1 FROM DUAL">
500         <ApplicationManagedConnection jdbcDriver="oracle.jdbc.driver.OracleDriver"
501             jdbcUrl="jdbc:oracle:thin:@db.example.org:1521:SomeDB" jdbcUserName="myid" jdbcPassword="mypassword" />
502         <QueryTemplate>
503             <![CDATA[
504                 SELECT * FROM student WHERE gzbtpid = $requestContext.principalName
505             ]]>
506         </QueryTemplate>
507
508         <Column columnName="gzbtpid" attributeID="uid" />
509         <Column columnName="fqlft" attributeID="gpa" type="Float" />
510     </resolver:DataConnector>
511
512     <!-- Example LDAP Connector -->
513     <resolver:DataConnector id="myLDAP" xsi:type="LDAPDirectory" xmlns="urn:mace:shibboleth:2.0:resolver:dc"
514         ldapUrl="ldap://ldap.example.org" baseDN="ou=people,dc=example,dc=org" principal="uid=myservice,ou=system"
515         principalCredential="myServicePassword">
516         <FilterTemplate>
517             <![CDATA[
518                 (uid=$requestContext.principalName)
519             ]]>
520         </FilterTemplate>
521
522     </resolver:DataConnector>
523
524     <!-- ========================================== -->
525     <!--      Principal Connectors                  -->
526     <!-- ========================================== -->
527     <resolver:PrincipalConnector xsi:type="Transient" xmlns="urn:mace:shibboleth:2.0:resolver:pc" id="shibTransient"
528         nameIDFormat="urn:mace:shibboleth:1.0:nameIdentifier" />
529
530     <resolver:PrincipalConnector xsi:type="Transient" xmlns="urn:mace:shibboleth:2.0:resolver:pc" id="saml1Transient"
531         nameIDFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" />
532
533 </AttributeResolver>