Hello team, 

is there already a way to get the value of SAML Partner Name / PartnerID in a mapping rule? It was also considered to implement it in future releases (See RFE from 2019: https://ibmsecurity.ideas.ibm.com/ideas/ISAM-I-778 )
Or is there maybe a workaround to get this value in current version 10.0.4?

Thanks in advance & best regards
Thomas

------------------------------
Thomas Renner
------------------------------

There is a workaround. You have to get it in an access policy and store it in the cache:

var protocolContext = context.getProtocolContext();
var PartnerName = protocolContext.getPartnerName();
var tsi=user.getAttribute("tagvalue_session_index").getValue();
IDMappingExtUtils.getIDMappingExtCache().put(tsi,PartnerName,60);

And later in the mapping rule:

var tsi=stsuu.getAttributeContainer().getAttributeValuesByName("tagvalue_session_index");
var PartnerName=IDMappingExtUtils.getIDMappingExtCache().get(tsi[0]);


------------------------------
Laurent LA Asselborn
------------------------------

Original Message:
Sent: Wed October 05, 2022 05:25 AM
From: Thomas Renner
Subject: Get value of SAML PartnerID / PartnerName

Hello team, 

is there already a way to get the value of SAML Partner Name / PartnerID in a mapping rule? It was also considered to implement it in future releases (See RFE from 2019: https://ibmsecurity.ideas.ibm.com/ideas/ISAM-I-778 )
Or is there maybe a workaround to get this value in current version 10.0.4?

Thanks in advance & best regards
Thomas

------------------------------
Thomas Renner
------------------------------

Hello Laurent, 

------------------------------
Thomas Renner
------------------------------

Original Message:
Sent: Thu October 06, 2022 03:16 AM
From: Laurent LA Asselborn
Subject: Get value of SAML PartnerID / PartnerName

There is a workaround. You have to get it in an access policy and store it in the cache:

var protocolContext = context.getProtocolContext();
var PartnerName = protocolContext.getPartnerName();
var tsi=user.getAttribute("tagvalue_session_index").getValue();
IDMappingExtUtils.getIDMappingExtCache().put(tsi,PartnerName,60);

And later in the mapping rule:

var tsi=stsuu.getAttributeContainer().getAttributeValuesByName("tagvalue_session_index");
var PartnerName=IDMappingExtUtils.getIDMappingExtCache().get(tsi[0]);


------------------------------
Laurent LA Asselborn

Original Message:
Sent: Wed October 05, 2022 05:25 AM
From: Thomas Renner
Subject: Get value of SAML PartnerID / PartnerName

Hello team, 

is there already a way to get the value of SAML Partner Name / PartnerID in a mapping rule? It was also considered to implement it in future releases (See RFE from 2019: https://ibmsecurity.ideas.ibm.com/ideas/ISAM-I-778 )
Or is there maybe a workaround to get this value in current version 10.0.4?

Thanks in advance & best regards
Thomas

------------------------------
Thomas Renner
------------------------------