Zde můžete vidět rozdíly mezi vybranou verzí a aktuální verzí dané stránky.
Obě strany předchozí revize Předchozí verze Následující verze | Předchozí verze Následující verze Obě strany příští revize | ||
cs:tech:categories:coco [2019/03/29 13:34] jop@cesnet.cz [IdP] oprava uvozovek |
cs:tech:categories:coco [2020/06/02 09:24] jan.oppolzer@cesnet.cz [IdP] |
||
---|---|---|---|
Řádek 7: | Řádek 7: | ||
* [[https://wiki.refeds.org/display/CODE/Code+of+Conduct+for+Service+Providers|Code of Conduct for Service Providers]] | * [[https://wiki.refeds.org/display/CODE/Code+of+Conduct+for+Service+Providers|Code of Conduct for Service Providers]] | ||
* [[https://wiki.refeds.org/display/CODE/SAML+2+Profile+for+the+Data+Protection+Code+of+Conduct|SAML 2 Profile for the Data Protection Code of Conduct]] | * [[https://wiki.refeds.org/display/CODE/SAML+2+Profile+for+the+Data+Protection+Code+of+Conduct|SAML 2 Profile for the Data Protection Code of Conduct]] | ||
- | * [[https://wiki.edugain.org/Recipe_for_a_Service_Provider|CoCo Recipe for a Service Provider]] | + | * [[https://wiki.geant.org/display/eduGAIN/Recipe+for+a+Service+Provider|Recipe for a Service Provider]] |
* [[https://wiki.refeds.org/display/CODE/What+attributes+are+relevant+for+a+Service+Provider|What attributes are relevant for a Service Provider]] | * [[https://wiki.refeds.org/display/CODE/What+attributes+are+relevant+for+a+Service+Provider|What attributes are relevant for a Service Provider]] | ||
- | * [[https://wiki.geant.org/display/eduGAIN/CoCo+Recipe+for+a+Home+Organisation|CoCo Recipe for a Home Organisation]] | + | * [[https://wiki.geant.org/display/eduGAIN/Recipe+for+a+Home+Organisation|Recipe for a Home Organisation]] |
* [[https://wiki.refeds.org/display/CODE/Data+protection+good+practice+for+Home+Organisations|Data protection good practice for Home Organisations]] | * [[https://wiki.refeds.org/display/CODE/Data+protection+good+practice+for+Home+Organisations|Data protection good practice for Home Organisations]] | ||
Řádek 32: | Řádek 32: | ||
//Jste-li správcem SP, tato část je určena pro Vás.// | //Jste-li správcem SP, tato část je určena pro Vás.// | ||
- | Začít byste měli určitě prostudováním [[https://wiki.geant.org/display/eduGAIN/CoCo+Recipe+for+a+Service+Provider|CoCo Recipe for a Service Provider]] a [[https://wiki.refeds.org/display/CODE/What+attributes+are+relevant+for+a+Service+Provider|What attributes are relevant for a Service Provider]]. | + | Začít byste měli určitě prostudováním [[https://wiki.geant.org/display/eduGAIN/Recipe+for+a+Service+Provider|Recipe for a Service Provider]] a [[https://wiki.refeds.org/display/CODE/What+attributes+are+relevant+for+a+Service+Provider|What attributes are relevant for a Service Provider]]. |
Metadata musí obsahovat: | Metadata musí obsahovat: | ||
Řádek 118: | Řádek 118: | ||
//Jste-li správcem IdP, tato část je určena pro Vás.// | //Jste-li správcem IdP, tato část je určena pro Vás.// | ||
- | Začít byste měli určitě prostudováním [[https://wiki.geant.org/display/eduGAIN/CoCo+Recipe+for+a+Home+Organisation|CoCo Recipe for a Home Organisation]] a [[https://wiki.refeds.org/display/CODE/Data+protection+good+practice+for+Home+Organisations|Data protection good practice for Home Organisations]]. | + | Začít byste měli určitě prostudováním [[https://wiki.geant.org/display/eduGAIN/Recipe+for+a+Home+Organisation|Recipe for a Home Organisation]] a [[https://wiki.refeds.org/display/CODE/Data+protection+good+practice+for+Home+Organisations|Data protection good practice for Home Organisations]]. |
Metadata musí obsahovat element ''EntityAttributes'' s odpovídajícím obsahem vyjadřují podporu pro CoCo a tedy že odpovídajícím službám budou uvolňovat atributy. | Metadata musí obsahovat element ''EntityAttributes'' s odpovídajícím obsahem vyjadřují podporu pro CoCo a tedy že odpovídajícím službám budou uvolňovat atributy. | ||
Řádek 146: | Řádek 146: | ||
<code xml> | <code xml> | ||
<!-- Code of Conduct --> | <!-- Code of Conduct --> | ||
- | <AttributeFilterPolicy id="CoCo"> | + | <AttributeFilterPolicy id="coco"> |
<PolicyRequirementRule | <PolicyRequirementRule | ||
Řádek 178: | Řádek 178: | ||
<Rule xsi:type="AttributeInMetadata" onlyIfRequired="true" /> | <Rule xsi:type="AttributeInMetadata" onlyIfRequired="true" /> | ||
<Rule xsi:type="OR"> | <Rule xsi:type="OR"> | ||
- | <Rule xsi:type="Value" value="affiliate" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="affiliate" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="alum" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="alum" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="employee" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="employee" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="faculty" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="faculty" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="library-walk-in" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="library-walk-in" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="member" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="member" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="staff" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="staff" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="student" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="student" caseSensitive="false" /> |
</Rule> | </Rule> | ||
</PermitValueRule> | </PermitValueRule> | ||
Řádek 195: | Řádek 195: | ||
<Rule xsi:type="AttributeInMetadata" onlyIfRequired="true" /> | <Rule xsi:type="AttributeInMetadata" onlyIfRequired="true" /> | ||
<Rule xsi:type="OR"> | <Rule xsi:type="OR"> | ||
- | <Rule xsi:type="Value" value="affiliate" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="affiliate" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="alum" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="alum" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="employee" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="employee" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="faculty" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="faculty" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="library-walk-in" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="library-walk-in" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="member" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="member" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="staff" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="staff" caseSensitive="false" /> |
- | <Rule xsi:type="Value" value="student" ignoreCase="true" /> | + | <Rule xsi:type="Value" value="student" caseSensitive="false" /> |
</Rule> | </Rule> | ||
</PermitValueRule> | </PermitValueRule> | ||
</AttributeRule> | </AttributeRule> | ||
- | <!-- schacHomeOrg --> | + | <!-- schacHomeOrganization --> |
- | <AttributeRule attributeID="schacHomeOrg"> | + | <AttributeRule attributeID="schacHomeOrganization"> |
<PermitValueRule xsi:type="AttributeInMetadata" onlyIfRequired="true" /> | <PermitValueRule xsi:type="AttributeInMetadata" onlyIfRequired="true" /> | ||
</AttributeRule> | </AttributeRule> |