...
Note | ||
---|---|---|
| ||
In most cases, it still needs to be verified whether the value for |
Facebook Mappings
Facebook supports a proprietary SSO protocol built on top of OAuth.
eduPerson Attribute | MACE-Dir SAML Attribute | OAuth Attribute | Example Value | Notes | |
---|---|---|---|---|---|
| | Lucas |
| ||
| | Rockwell |
| ||
| | Lucas Rockwell | See | ||
| | Lucas Rockwell | Duplicate of | ||
| | lr@lucasrockwell.com |
| ||
| | lucasrockwell | Can be blank, and a user can change this once for the lifetime of their account. | ||
| | lucasrockwell@facebook.com |
| ||
| | *http://facebook.com!12...71* |
|
...
...
Mappings
Google supports two standard SSO protocols: OpenID 2.0 and OpenID Connect. The latter is an emerging IETF standard profile of OAuth2.
OpenID 2.0
eduPerson Attribute | MACE-Dir SAML Attribute | OpenID Attribute | Example Value | Notes | |
---|---|---|---|---|---|
| | Lucas |
| ||
| | Rockwell |
| ||
|
|
| Google does not provide | ||
|
|
| Google does not provide | ||
| | lucasrockwell@gmail.com |
| ||
|
|
| Google does not provide | ||
| | lucasrockwell@gmail.com | Using http://axschema.org/contact/email for | ||
| Private Personal Identifier (PPID) | ** | An opaque, per-SP identifier, just like ePTID |
OpenID Connect
eduPerson Attribute | Google Attribute | Example Value | Notes |
---|---|---|---|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
LinkedIn Mappings
LinkedIn supports a proprietary SSO protocol built on top of OAuth.
eduPerson Attribute | MACE-Dir SAML Attribute | OpenID Attribute | Example Value | Notes | |
---|---|---|---|---|---|
| | Lucas |
| ||
| | Rockwell |
| ||
|
|
| LinkedIn does not provide | ||
|
|
| LinkedIn does not provide | ||
|
|
| LinkedIn does not provide | ||
| | Y...r |
| ||
| | Y...r@linkedin.com | Local part is the same value as | ||
| | *http://linkedin.com!Y...r* | Unique value is the same value as |
Twitter Mappings
Twitter supports a proprietary SSO protocol built on top of OAuth.
eduPerson Attribute | MACE-Dir SAML Attribute | OpenID Attribute | Example Value | Notes | |
---|---|---|---|---|---|
|
|
| Twitter does not provide | ||
|
|
| Twitter does not provide | ||
| | Lucas Rockwell |
| ||
| | Lucas Rockwell |
| ||
|
|
| Twitter does not provide | ||
| | lucasrockwell |
| ||
| | lucasrockwell@twitter.com |
| ||
| | *http://twitter.com!1...5* |
|
Windows Live Mappings
Windows Live supports a proprietary SSO protocol built on top of OAuth.
eduPerson Attribute | Windows Live | MACE-Dir SAML Attribute | OpenID Attribute | Example Value | Notes |
---|---|---|---|---|---|
| | Lucas |
| ||
| | Rockwell |
| ||
|
|
| Windows Live does not provide | ||
|
|
| Windows Live does not provide | ||
| | lr@lucasrockwell.com | This is not necessarily an address @hotmail.com. | ||
| | fd...89 |
| ||
| | fd...89@windowslive.com | Local part is the same value as | ||
| | *http://windowslive.com!fd...89* | Unique value is the same value as |
...
Provider | First Name | Last Name | Transient Email* | Persistent Email | Human-readable Unique ID | Machine-readable Unique ID | SP-specific ID |
---|---|---|---|---|---|---|---|
| | |
| | (Have not verified this yet.) | (Have not verified this yet.) | |
Google OAuth OpenID Connect | | |
| | (Email...) | (Appears user can only look it up if Google+ is enabled for the account.) |
|
Google OpenID 2.0 | | |
| | (Email...) |
| (The OpenID can either be set for the SP realm, or the domain realm, so only SP-specific if you ask Google to do that for you.) |
| |
|
| (Only if enabled via the Public Profile Settings page, however, a user can change this at will.) | | ||
| |
|
| | (Have not verified this yet.) | (Have not verified this yet.) | |
Windows Live | | | |
| (Email, but there is more than one, so perhaps not...) | (Have not verified this yet.) | (Have not verified this yet.) |
...