Reputation: 23
WSO2IS - Q: Can Claims be Transformed or Computed
I work for a University and have been tasked with converting from Shibboleth to WSO2IS. I am struggling with Claims and SAML2 Assertions.
I would like to be able to transform claims in WSO2IS. For instance if a SP expects birthDate in the format of '03-May-1979' and another one expects birthDate in the format of '05/03/1979', as far as I can tell there is no way to do that without having separate LDAP attributes and claims.
I would also like to be able to compute claims. For example if a SP wants an age, and I know a birthDate, could I compute the age and send as an assertion? Or could I combine multiple ldap attributes to create a new claim? Ldap GivenName + SurName = FullName.
Ideally, I'd like to be able to use JavaScript as an embedded language to make these kind of computations and transformations.
Is this currently possible or on the roadmap?
Upvotes: 2
Views: 125
Answers (1)
Reputation: 3011
I have created a sample Custom Claim Handler[1]. Go through the code[2] and you should be able to figure out what I have done :).
I have added a README on how to deploy this on IS 5.3.0
[1] https://github.com/mefarazath/CustomClaimHandler
Upvotes: 2
Related Questions
- WSO2 IS 5.9.0 Updating user claims
- How to Change Issuer Claim in Identity token WSO2 Identity Server through Configuration
- Is it possible to map claims by default on a service provider?
- WSO2 IS - How to get custom claims from WSO2 Identity Server via user-info rest service
- Creating replicated claims in WSO2 Identity Server
- wso2is-5.3.0 How to update Identity claims
- WSO2 IS: OpenID Connect custom claims in 5.2.0?
- Can't get claims when using WSO2 IS as OpenID provider?
- How can I add claim mapping in wso2is via configuration?
- wso2is4.6 claim management