Skip to Content
Last modified by Mark Kohlmann on 2025/05/10 00:45
From version 3.1
edited by Mark Kohlmann
on 2025/05/10 00:25
Change comment: There is no comment for this version
To version 1.1
edited by Mark Kohlmann
on 2025/05/09 18:24
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -18,46 +18,57 @@
18 18  ==== SAML IdP Claim Mapping: ====
19 19  
20 20  |=Function|=Attribute Name|=Required|=Expected Value|=Sample Values|=Notes
21 -|User Id|
21 +|User Id|
22 22  
23 23  {{{http://schemas.microsoft.com/identity/claims/objectidentifier}}}|Y|GUID or unique identifier within the IdP system|
24 24  
25 -{{{101507cb-90da-473d-bfa7-9967979824e7 00ab9c907defGhIJ1697}}}|If a GUID is not returned then the value is hashed and converted to a GUID
25 +{{{101507cb-90da-473d-bfa7-9967979824e7
26 +00ab9c907defGhIJ1697}}}|If a GUID is not returned then the value is hashed and converted to a GUID
27 +|Username|
26 26  
27 -|Username|
28 -
29 29  {{{http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier}}}|Y|username or email address|
30 30  
31 -{{{john.doe jane.doe@example.com}}}|
31 +{{{john.doe
32 +jane.doe@example.com}}}|
33 +|Display Name|
32 32  
33 -|Display Name|
34 -
35 35  {{{http://schemas.microsoft.com/identity/claims/displayname}}}|Y|User's name
36 36  Example: John|
37 37  
38 38  {{{John Doe}}}|
39 +|User Group|
39 39  
40 -|User Group|
41 -
42 42  {{{http://schemas.microsoft.com/ws/2008/06/identity/claims/role}}}|Y|User's Group Name|
43 43  
44 -{{{Administrators End Users General Users}}}|Must match a ShowRunner User Group name
43 +{{{Administrators
45 45  
46 -|PIN|pin|N|User's passcode/PIN code for touchscreen|
45 +End Users
47 47  
47 +General Users}}}|Must match a ShowRunner User Group name
48 +|PIN|pin|N|User's passcode/PIN code for touchscreen|
49 +
48 48  {{{123456}}}|
51 +|Touchscreen Access Level|touchscreenAccessLevel|N|Access level for the user when access a touchscreen|
49 49  
50 -|Touchscreen Access Level|touchscreenAccessLevel|N|Access level for the user when access a touchscreen|
53 +{{{Valid Values:
54 +None, Technician, User
51 51  
52 -{{{Valid Values: None, Technician, User Example: Technician}}}|
56 +Example:
57 +Technician}}}|
58 +|Login Permitted|userLoginPermitted|N|Locations where a user can login.  Multiple values are supported|
53 53  
54 -|Login Permitted|userLoginPermitted|N|Locations where a user can login.  Multiple values are supported|
60 +{{{Valid Values:
61 +None, Touchpanel, Web
55 55  
56 -{{{Valid Values: None, Touchpanel, Web Example: Touchpanel,Web}}}|Comma separated listed of valid values
63 +Example:
64 +Touchpanel,Web}}}|Comma separated listed of valid values
65 +|Login Method|userLoginMethod|N|How a user can login|
57 57  
58 -|Login Method|userLoginMethod|N|How a user can login|
67 +{{{Valid Values:
68 +None, Username, PIN
59 59  
60 -{{{Valid Values: None, Username, PIN Example: Username,PIN}}}|Comma separated listed of valid values
70 +Example:
71 +Username,PIN}}}|Comma separated listed of valid values
61 61  
62 62  ==== Notes: ====
63 63  
... ... @@ -65,7 +65,7 @@
65 65  * A successful authentication with the IdP will add the user to ShowRunner's user database if they don't exist
66 66  * User matches occurs based on the User Id, ensure that the User Id is unique within your IdP
67 67  * All user values will be updated if they change within the IdP system
68 -* Non-Required values that are not sent with the SAML assertion will not update the ShowRunner's users equivalent value
79 +* Non-Required values that are not sent with the SAML assertion will not update the ShowRunner's users
69 69  
70 70  ==== Example Integrations: ====
71 71