A University Shibboleth Glossary: Difference between revisions
From RavenWiki
Jump to navigationJump to search
No edit summary |
(Created) |
||
| Line 1: | Line 1: | ||
{{shib-project}} | {{shib-project}} | ||
This is an attempt to map terms commonly used in the wider Shibboleth community onto words or phrases for use within the University of Cambridge, notably in the Raven/Shibboleth service itself and in its documentation. | |||
<table border="1" cellpadding="5"> | |||
<tr valign="top"> | |||
<th>Shibboleth term</th> | |||
<th>Local term</th> | |||
<th>Description, notes</th> | |||
</tr> | |||
<tr valign="top"> | |||
<td>Attribute</td> | |||
<td>Attribute</td> | |||
<td></td> | |||
<tr> | |||
<tr valign="top"> | |||
<td>eduPersonEntitlement,<br />ePE</td> | |||
<td>Entitlement</td> | |||
<td>An '''attribute''' carrying an arbitrary entitlement, typically specified by a resource, asserted on the user's behalf by '''the Raven-Shibboleth service'''. Or the value of such an '''attribute'''.</td> | |||
<tr> | |||
<tr valign="top"> | |||
<td>eduPersonPrincipalName,<br />ePPN</td> | |||
<td>Unique Identifier</td> | |||
<td>An '''attribute''' containing a persistent, unique user identifier which for a given user is the same for any '''resource''' to which it is released. Or the value of such an '''attribute'''.</td> | |||
<tr> | |||
<tr valign="top"> | |||
<td>eduPersonScopedAffiliation,<br/>ePSA</td> | |||
<td>Affiliation</td> | |||
<td>An '''attribute''' carrying one of a number of standard values reflecting a person's association with the University. Currently only carries the value ''member'' which is assigned to anyone in lookup. May eventually also carry ''staff'' and/or ''student'' as apropriate. Or the value of such an '''attribute'''.</td> | |||
</tr> | |||
<tr valign="top"> | |||
<td>eduPersonTargetedID,<br />ePTID</td> | |||
<td>Anonymous identifier</td> | |||
<td>An '''attribute''' carrying a user identifier allocated at random and different for each combination of user and '''resource'''. Or the value of such an '''attribute'''.</td> | |||
<tr> | |||
<tr valign="top"> | |||
<td>Service Provider,<br />SP</td> | |||
<td>Resource</td> | |||
<td>A web-based resource (web site, e-journal, databae, etc.) accessed via '''the Raven-Shibboleth service'''.</td> | |||
<tr> | |||
<tr valign="top"> | |||
<td>Shibboleth,<br />Shibboleth IdP</td> | |||
<td>The Raven-Shibboleth service</th> | |||
<td>As in "you need to authenticate using the Raven-Shibboleth service", used where it is necessary to distinguish this from the Raven-Webauth service.</td> | |||
</tr> | |||
<tr valign="top"> | |||
<td></td> | |||
<td></td> | |||
<td></td> | |||
<tr> | |||
<tr valign="top"> | |||
<td></td> | |||
<td></td> | |||
<td></td> | |||
<tr> | |||
<tr valign="top"> | |||
<td></td> | |||
<td></td> | |||
<td></td> | |||
<tr> | |||
<tr valign="top"> | |||
<td></td> | |||
<td></td> | |||
<td></td> | |||
<tr> | |||
</table> | |||
Revision as of 14:34, 26 June 2007
This was a working document belonging to the Computing Service's Shibboleth Development Project. This project is complete (Raven now supports Shibboleth) and this document only remains for historical and reference purposes. Be aware that it is not being maintained and may be misleading if read out of context.
This is an attempt to map terms commonly used in the wider Shibboleth community onto words or phrases for use within the University of Cambridge, notably in the Raven/Shibboleth service itself and in its documentation.
| Shibboleth term | Local term | Description, notes |
|---|---|---|
| Attribute | Attribute | |
| eduPersonEntitlement, ePE |
Entitlement | An attribute carrying an arbitrary entitlement, typically specified by a resource, asserted on the user's behalf by the Raven-Shibboleth service. Or the value of such an attribute. |
| eduPersonPrincipalName, ePPN |
Unique Identifier | An attribute containing a persistent, unique user identifier which for a given user is the same for any resource to which it is released. Or the value of such an attribute. |
| eduPersonScopedAffiliation, ePSA |
Affiliation | An attribute carrying one of a number of standard values reflecting a person's association with the University. Currently only carries the value member which is assigned to anyone in lookup. May eventually also carry staff and/or student as apropriate. Or the value of such an attribute. |
| eduPersonTargetedID, ePTID |
Anonymous identifier | An attribute carrying a user identifier allocated at random and different for each combination of user and resource. Or the value of such an attribute. |
| Service Provider, SP |
Resource | A web-based resource (web site, e-journal, databae, etc.) accessed via the Raven-Shibboleth service. |
| Shibboleth, Shibboleth IdP |
The Raven-Shibboleth service | As in "you need to authenticate using the Raven-Shibboleth service", used where it is necessary to distinguish this from the Raven-Webauth service. |
