Shibboleth as Service Provider¶

Shibboleth can be used as the Service Provider in a SAML Single Sign-On (SSO) environment for the Scyld Cloud Portal.

SSO logins use the following attributes from the SAML payload, as set in attribute-map.xml and identified by the id value:

username fullName or firstName, lastName email

Example:

<Attribute name="urn:oid:2.16.840.1.113730.3.1.241" id="fullName"/>
<Attribute name="urn:oid:0.9.2342.19200300.100.1.1" id="username"/>
<Attribute name="urn:oid:0.9.2342.19200300.100.1.3" id="email"/>

The Attribute element may have attributes of name, xmlns:saml and nameFormat depending on the Identity Provider.