Claims

Required Claims

Starmind requires the following attributes.

Outgoing Claim Type Description
UPN A User Principal Names (UPN) allows us to identify the user at any time because it is the main identifier to your user directory. A UPN is an identifier for the user that will never change over time. Therefore it should not be the name or the email address of the user.
E-Mail Addresse.g. john.doe@customer.com
Given Namee.g. John
Surnamee.g. Doe
Gender (optional)m for male, f for female and u for undefined gender.
Role (optional)e.g. User, Manager
Location (optional)e.g. Bern, Basel
About (optional)Write a short sentence about the user, his job description department or interests
Company (optional)e.g. ACME Ltd.
Department (optional)e.g. Digital Marketing
Position (optional)e.g. Vice President
Employment date (optional)Start date of the employee "2000-10-01T00:00:00"
Country (optional)Country code in ISO 3166-1 alpha-2 format like ch, de, us.
Image (optional)will be used as profile picture

Sample SAML 2.0 Assertion

<Assertion xmlns="urn:oasis:names:tc:SAML:2.0:assertion" ID="_23995a40-0216-4ad5-a311-6764d28b7696" IssueInstant="2014-10-10T12:57:06.032Z" Version="2.0">
    <Issuer>http://fs.customer-a.com/adfs/services/trust</Issuer>
    <Subject>
        <SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
            <SubjectConfirmationData InResponseTo="_40100e8776f7191834102bf52f8ae814" NotOnOrAfter="2014-10-10T13:02:06.080Z" Recipient="https://customer-a.starmind.com/Shibboleth.sso/SAML2/POST"/>
        </SubjectConfirmation>
    </Subject>
    <AttributeStatement>
        <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn">
            <AttributeValue>john.doe@customer-a.com</AttributeValue>
        </Attribute>
        <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress">
            <AttributeValue>user@customer-a.com</AttributeValue>
        </Attribute>
        <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname">
            <AttributeValue>John</AttributeValue>
        </Attribute>
        <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname">
            <AttributeValue>Doe</AttributeValue>
        </Attribute>
        <Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/role">
            <AttributeValue>User</AttributeValue>
            <AttributeValue>Manager</AttributeValue>
        </Attribute>
        <Attribute Name="gender" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
            <AttributeValue>m</AttributeValue>
        </Attribute>        
        <Attribute Name="company" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
            <AttributeValue>ACME Ltd.</AttributeValue>
        </Attribute>
        <Attribute Name="department" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
            <AttributeValue>IT</AttributeValue>
        </Attribute>
        <Attribute Name="position" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
            <AttributeValue>IT Supporter</AttributeValue>
        </Attribute>
        <Attribute Name="location" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
            <AttributeValue>Zürich</AttributeValue>
        </Attribute>
        <Attribute Name="country" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
            <AttributeValue>CH</AttributeValue>
        </Attribute>                            
    </AttributeStatement>
</Assertion>