Versions Compared

Old Version 6

changes.mady.by.user Former user

Saved on

compared with

New Version 7

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

In the Claim Configuration form, select the claim mapping dialect by either choosing to use a local claim dialect or define your own custom claim dialect.

  1. If you choose to Use Local Claim Dialect, you need to fill in the following details.
    1. Fill in your requested claims by clicking the Add Claim URI button.
    2. Choose your Local Claim from the dropdown.
  2. If you choose to Define Custom Claim Dialect, you need to do the following. 
    1. Add an Identity Provider Claim URI a custom claim URI by clicking on the Add Claim URI button.

    2. Add your the Service Provider Claim,  and choose your the corresponding Local Claim from the dropdown and select whether you want the claim to be a Requested Claim by using the checkbox.

      Info
      titleInformation on mapping claims

      The Local Claim list includes a set of standard claim values which are local to the WSO2 Identity Server. When adding a service provider, it is necessary to map the values of the claims local to the service provider with those provided in this dropdown list which are local to the Identity Server. This should be done for all values in the service provider unless they use the same claim name.

      Marking a mapped claim as a Requested Claim would ensure that the service provider definitely sends this claim to the Identity Server. This is useful particularly in cases where there are hundreds of claims and only specific ones need to be sent to the Identity Server.

    3. Select the Subject Claim URI and the Role Claim URI from the dropdown. The claims you mapped will be listed in the dropdown and you can choose among these claims.

      Note
      • The Subject Claim URI is important to define as it is the unique value used to identify the user. In cases where you have a user store connected to the Identity Server, this Subject Claim URI value is used to search for the user in the user store.
      • The Role Claim URI is used to identify the claim that equates to the role of the user. This is linked to the permissions that you can apply for specific user roles.