Page tree

The Shibboleth 2.x software has reached its End of Life and is no longer supported. This documentation is available for historical purposes only.

Skip to end of metadata
Go to start of metadata

Stored ID Principal Connector

The stored ID principal connector maps a persistent ID generated by the stored ID data connector back in to the principal used to generate the ID.

Define the Connector

The connector is defined with the element <resolver:PrincipalConnector xsi:type="pc:StoredId" xmlns:pc="urn:mace:shibboleth:2.0:resolver:pc"> with the following required attribute:

  • id - assigns a unique, within the resolver, identifier
  • nameIDFormat - the name identifier format services by this principal connector - this is almost always urn:oasis:names:tc:SAML:2.0:nameid-format:persistent for this connector
  • storedIdDataConnectorRef - the ID of the stored ID data connector that generated the stored id
StoredId Principal Connector Example
<resolver:PrincipalConnector xsi:type="pc:StoredId" xmlns:pc="urn:mace:shibboleth:2.0:resolver:pc"
                             id="UNIQUE_ID"
                             nameIDFormat="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" 
                             storedIdDataConnectorRef="ID"/>