Versions Compared

Old Version 26

changes.mady.by.user Henrik Eidnes Nielsen

Saved on

compared with

New Version 27

changes.mady.by.user Henrik Eidnes Nielsen

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Tilføj titler på kodeeksempler

...

Bemærk returværdien fra STS, der indeholder attributten 'dk:gov:saml:attribute:Privileges_intermediate' (ikke vist i ovenstående eksempler):

Code Block
languagexml
titledk:gov:saml:attribute:Privileges_intermediate
collapsetrue
<saml:Attribute Name="dk:gov:saml:attribute:Privileges_intermediate"
    NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
    <saml:AttributeValue xsi:type="xs:string">
     PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiID8+PGJwcDpQcml2aWxlZ2VMaXN0IHhtbG5zOmJwcD0iaHR0cDovL2RpZ3N0LmRrL29pb3NhbWwvYmFzaWNfcHJpdmlsZWdlX3Byb2ZpbGUiPjxQcml2aWxlZ2VHcm91cCBTY29wZT0idXJuOnByZWZpeDoxMjM0NTY3ODkwIj48UHJpdmlsZWdlPnVybjpkazpzdW5kaGVkc2RhdGFzdHlyZWxzZW46aWRzYXM6cmVhZDp1bmJsdXJyZWQ8L1ByaXZpbGVnZT48L1ByaXZpbGVnZUdyb3VwPjwvYnBwOlByaXZpbGVnZUxpc3Q+
    </saml:AttributeValue>
</saml:Attribute>

...

Code Block
languagexml
titleDecoded dk:gov:saml:attribute:Privileges_intermediate value
collapsetrue
<?xml version="1.0" encoding="UTF-8"?>
<bpp:PrivilegeList xmlns:bpp="http://itst.dk/oiosaml/basic_privilege_profile">
  <bpp:PrivilegeGroup Scope="urn:dk:healthcare:saml:actThroughProcurationBy:cprNumberIdentifier:0101603040">
    <bpp:Privilege>urn:dk:nspop:sts:fmk:read</bpp:Privilege>
    <bpp:Privilege>urn:dk:nspop:sts:fmk:write</bpp:Privilege>
  </bpp:PrivilegeGroup>
</bpp:PrivilegeList>

...

STS vil gennem IDSAS slå op om sløring er ønsket. Der kan være forskellige scenarier. Hvis værdien ikke er tilstede, eller den er  "unblurred", så ønskes sløring ikke:

Code Block
languagexml
titleDecoded dk:gov:saml:attribute:Privileges_intermediate value
collapsetrue
<?xml version="1.0" encoding="UTF-8"?>
<bpp:PrivilegeList xmlns:bpp="http://digst.dk/oiosaml/basic_privilege_profile">
    <PrivilegeGroup Scope="urn:prefix:1234567890">
        <Privilege>urn:dk:sundhedsdatastyrelsen:idsas:read:unblurred</Privilege>
    </PrivilegeGroup>
</bpp:PrivilegeList>

...

Hvis sløring ønskes vil det se sådan her ud:

Code Block
languagexml
titleDecoded dk:gov:saml:attribute:Privileges_intermediate value
collapsetrue
<?xml version="1.0" encoding="UTF-8"?>
<bpp:PrivilegeList xmlns:bpp="http://digst.dk/oiosaml/basic_privilege_profile">
    <PrivilegeGroup Scope="urn:prefix:0501792275">
        <Privilege>urn:dk:sundhedsdatastyrelsen:idsas:read:unblurred</Privilege>
        <Constraint Name="CVR">12345678</Constraint>
    </PrivilegeGroup>
</bpp:PrivilegeList>

...