Jump to:
Getting Started
- Read me first: An Introduction to User Data
- Choosing the right user identifiers
- Handling data exchange in SAML
Streamline access with entity categories
<future>REFEDS Authentication Only entity category</>
<future>REFEDS Anonymous Authorization entity category</>
<future>REFEDS Pseudonymous Authorization entity category</>
References and additional reading
- eduPerson LDAP Object Class schema
- SAML v2.0 Subject Identifier Attributes Profile Version 1.0
- <future> Attributes vs "claims" (for the Microsoft / OIDC etc. camp)
- <future> Privacy considerations
- <future> Negotiating data release
- <future> Consent?
Attributes (supported?) in InCommon
Person identifiers
- SAML General Purpose Subject Identifier (subject-id)
- SAML Pairwise Subject Identifier (pairwise-id)
- eduPersonPrincipalName (eppn)
- eduPersonTargetedID (eptid) -deprecated-
- eduPersonUniqueID
Person characteristics and contacts
Authorization support information
- eduPersonOrgDN
- eduPersonAffiliation
- eduPersonScopedAffiliation
- eduPersonEntitlement
- memberOf
- isMemberOf