Skip to Content
Last modified by Mark Kohlmann on 2025/05/10 00:45
From version 1.1
edited by Mark Kohlmann
on 2025/05/09 18:24
Change comment: There is no comment for this version
To version 3.1
edited by Mark Kohlmann
on 2025/05/10 00:25
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -18,57 +18,46 @@
18 18  ==== SAML IdP Claim Mapping: ====
19 19  
20 20  |=Function|=Attribute Name|=Required|=Expected Value|=Sample Values|=Notes
21 -|User Id|
21 +|User Id|
22 22  
23 23  {{{http://schemas.microsoft.com/identity/claims/objectidentifier}}}|Y|GUID or unique identifier within the IdP system|
24 24  
25 -{{{101507cb-90da-473d-bfa7-9967979824e7
26 -00ab9c907defGhIJ1697}}}|If a GUID is not returned then the value is hashed and converted to a GUID
27 -|Username|
25 +{{{101507cb-90da-473d-bfa7-9967979824e7 00ab9c907defGhIJ1697}}}|If a GUID is not returned then the value is hashed and converted to a GUID
28 28  
27 +|Username|
28 +
29 29  {{{http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier}}}|Y|username or email address|
30 30  
31 -{{{john.doe
32 -jane.doe@example.com}}}|
33 -|Display Name|
31 +{{{john.doe jane.doe@example.com}}}|
34 34  
33 +|Display Name|
34 +
35 35  {{{http://schemas.microsoft.com/identity/claims/displayname}}}|Y|User's name
36 36  Example: John|
37 37  
38 38  {{{John Doe}}}|
39 -|User Group|
40 40  
40 +|User Group|
41 +
41 41  {{{http://schemas.microsoft.com/ws/2008/06/identity/claims/role}}}|Y|User's Group Name|
42 42  
43 -{{{Administrators
44 +{{{Administrators End Users General Users}}}|Must match a ShowRunner User Group name
44 44  
45 -End Users
46 +|PIN|pin|N|User's passcode/PIN code for touchscreen|
46 46  
47 -General Users}}}|Must match a ShowRunner User Group name
48 -|PIN|pin|N|User's passcode/PIN code for touchscreen|
49 -
50 50  {{{123456}}}|
51 -|Touchscreen Access Level|touchscreenAccessLevel|N|Access level for the user when access a touchscreen|
52 52  
53 -{{{Valid Values:
54 -None, Technician, User
50 +|Touchscreen Access Level|touchscreenAccessLevel|N|Access level for the user when access a touchscreen|
55 55  
56 -Example:
57 -Technician}}}|
58 -|Login Permitted|userLoginPermitted|N|Locations where a user can login.  Multiple values are supported|
52 +{{{Valid Values: None, Technician, User Example: Technician}}}|
59 59  
60 -{{{Valid Values:
61 -None, Touchpanel, Web
54 +|Login Permitted|userLoginPermitted|N|Locations where a user can login.  Multiple values are supported|
62 62  
63 -Example:
64 -Touchpanel,Web}}}|Comma separated listed of valid values
65 -|Login Method|userLoginMethod|N|How a user can login|
56 +{{{Valid Values: None, Touchpanel, Web Example: Touchpanel,Web}}}|Comma separated listed of valid values
66 66  
67 -{{{Valid Values:
68 -None, Username, PIN
58 +|Login Method|userLoginMethod|N|How a user can login|
69 69  
70 -Example:
71 -Username,PIN}}}|Comma separated listed of valid values
60 +{{{Valid Values: None, Username, PIN Example: Username,PIN}}}|Comma separated listed of valid values
72 72  
73 73  ==== Notes: ====
74 74  
... ... @@ -76,7 +76,7 @@
76 76  * A successful authentication with the IdP will add the user to ShowRunner's user database if they don't exist
77 77  * User matches occurs based on the User Id, ensure that the User Id is unique within your IdP
78 78  * All user values will be updated if they change within the IdP system
79 -* Non-Required values that are not sent with the SAML assertion will not update the ShowRunner's users
68 +* Non-Required values that are not sent with the SAML assertion will not update the ShowRunner's users equivalent value
80 80  
81 81  ==== Example Integrations: ====
82 82