[openid-specs-rande] SAML to OIDC mapping specification
Alan Buxey
alan.buxey at myunidays.com
Thu Mar 4 10:08:56 UTC 2021
hi,
> As it happens, I came across this:
>
> https://www.cilogon.org/oidc
>
> It looks like CILogin is returning some eduPerson attributes, but using
> a different mapping scheme (e.g., eduPersonPrincipalName stored as the
> "eppn" claim).
>
> Perhaps there's an opportunity to reach out and involve the CILogin people?
Yes, that's out of alignment with the current proposals - more so than others.
with regards to early adopters - as with many things before agreed
standardisation,
there may be some small adjustments required after the first drafts.
Even hardware
vendors may have to make adjustments in networking specs if they adopt early.
Probably some transition phase inserted if it's just some underscores
-'legacy' systems
to release both formats deal with both formats until some cut-off
date. New entrants just
deal with the finalised values.
alan
More information about the openid-specs-rande
mailing list