Thierry Delaitre wrote:
> Thanks. It seems others have similar requirements. Are you able to take it
> further with the UK federation operator ?
We'll be thinking about it a bit more first, including the points
Jon Warbrick has made.
> Do you have a rough estimates when
> this would be done if the UK federation operator was to mark IDPs as
whether
> institutions are HE, FE, etc ?
I'm afraid we won't be offering any timescales at this stage.
> Depending on the delay, is there a workaround I can use in the meantime
> using static lists of HE & FE institutions formatted in a suitable format
?
The fallback position (which we will be using ourselves if a more general
approach is not available in time) is to select from the federation
metadata the scopes of all IdP organisations of interest. The metadata
contains both the verified name of the organisation (which can be
compared with the lists Sean Dunne mentioned) and the scope. The SP
then has to authorise based on eduPersonScopedAffiliation having one of
the selected scopes (and member, staff, student etc. as required).
The labelling idea would just centralise the manual selection part of
this process, enabling individual SPs to extract the required scopes
mechanically rather than by hand.
Fiona.
|