From 0ea877395dcc7eddbcacc032505c35786a12aed3 Mon Sep 17 00:00:00 2001
From: "renater.salaun" <renater.salaun@047e039d-479c-447e-8a29-aa6bf4a09bab>
Date: Wed, 1 Apr 2015 13:04:47 +0000
Subject: [PATCH] Reintroduce use of internal_uid to prevent it from being
released by simpleSamlPhp
git-svn-id: https://svn.geant.net/GEANT/edugain_testidp_account_manager/trunk@117 047e039d-479c-447e-8a29-aa6bf4a09bab
---
templates/accountProfiles/alumni1.tt2 | 2 +-
templates/accountProfiles/employee1.tt2 | 2 +-
templates/accountProfiles/generic1.tt2 | 2 +-
templates/accountProfiles/librarywalkin1.tt2 | 2 +-
templates/accountProfiles/researcher1.tt2 | 2 +-
templates/accountProfiles/student1.tt2 | 2 +-
templates/accountProfiles/student2.tt2 | 2 +-
templates/accountProfiles/teacher1.tt2 | 2 +-
templates/accountProfiles/teacher2.tt2 | 2 +-
templates/web/validate_token.tt2.html | 2 +-
10 files changed, 10 insertions(+), 10 deletions(-)
diff --git a/templates/accountProfiles/alumni1.tt2 b/templates/accountProfiles/alumni1.tt2
index aa71063..3fc2844 100644
--- a/templates/accountProfiles/alumni1.tt2
+++ b/templates/accountProfiles/alumni1.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Alumni',
'comment' => 'Value "member" is not set for eduPersonAffiliation, contrary to current students.',
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'eduPersonAffiliation' => ['alum'],
'eduPersonScopedAffiliation' => ["alum@${conf.idp_scope}"],
'displayName' => 'Åsold Wahlstrøm',
diff --git a/templates/accountProfiles/employee1.tt2 b/templates/accountProfiles/employee1.tt2
index ef9b1ff..02d163e 100644
--- a/templates/accountProfiles/employee1.tt2
+++ b/templates/accountProfiles/employee1.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Employee',
'comment' => 'There are conflicting definitions of "staff" and "employee" from country to country that make those values particularly unreliable in any international context. However in this example we set both values.',
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'eduPersonAffiliation' => ['member','staff','employee'],
'eduPersonScopedAffiliation' => ["member@${conf.idp_scope}","staff@${conf.idp_scope}","employee@${conf.idp_scope}"],
'displayName' => 'Linnéa Hsu',
diff --git a/templates/accountProfiles/generic1.tt2 b/templates/accountProfiles/generic1.tt2
index 350cda7..6b72630 100644
--- a/templates/accountProfiles/generic1.tt2
+++ b/templates/accountProfiles/generic1.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Generic',
'comment' => 'This account provides a limited set of user attributes (eduPersonPrincipalName, mail and displayName).',
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'displayName' => '山崎 弘å樫野 陽å',
'mail' => "forearartian@${conf.idp_scope}",
'eduPersonPrincipalName' =>"${account_id}@${conf.idp_scope}",
diff --git a/templates/accountProfiles/librarywalkin1.tt2 b/templates/accountProfiles/librarywalkin1.tt2
index a9216d1..20ba7e4 100644
--- a/templates/accountProfiles/librarywalkin1.tt2
+++ b/templates/accountProfiles/librarywalkin1.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Library walk-in',
'comment' => 'This term was created to cover the case where physical presence in a library facility grants someone access to electronic resources typically licensed for faculty, staff and students. In recent years the library walk-in provision has been extended to cover other cases such as library users on the campus network, or those using on-campus workstations. Licensed resource providers have often been willing to interpret their contracts with licensees to accept this broader definition of "library-walk-in," though specific terms may vary. For a more direct way of using eduPerson attributes to express library privilege information, see the eduPersonEntitlement value "urn:mace:dir:entitlement:common-lib-terms" as defined in the MACE-Dir Registry of eduPersonEntitlement values <a href="http://middleware.internet2.edu/urn-mace/urn-mace-dir-entitlement.html">http://middleware.internet2.edu/urn-mace/urn-mace-dir-entitlement.html</a>.',
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'eduPersonAffiliation' => ['library-walk-in'],
'eduPersonScopedAffiliation' => ["library-walk-in@${conf.idp_scope}"],
'displayName' => 'Ramón Núñez',
diff --git a/templates/accountProfiles/researcher1.tt2 b/templates/accountProfiles/researcher1.tt2
index 6034213..bad7083 100644
--- a/templates/accountProfiles/researcher1.tt2
+++ b/templates/accountProfiles/researcher1.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Researcher',
'comment' => "No standard value for eduPersonAffiliation can be used to represent a researcher. Therefore you can't differenciate a teacher from a researcher.",
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'eduPersonAffiliation' => ['member', 'faculty'],
'eduPersonScopedAffiliation' => ["member@${conf.idp_scope}", "faculty@${conf.idp_scope}"],
'displayName' => 'Stéphane Larivière',
diff --git a/templates/accountProfiles/student1.tt2 b/templates/accountProfiles/student1.tt2
index d6ed41f..d6d9843 100644
--- a/templates/accountProfiles/student1.tt2
+++ b/templates/accountProfiles/student1.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Student',
'comment' => 'An active student has both "member" and "student" values set for eduPersonAffiliation.',
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'eduPersonAffiliation' => ['member', 'student'],
'eduPersonScopedAffiliation' => ["member@${conf.idp_scope}","student@${conf.idp_scope}"],
'displayName' => 'Ciarán MacCárthaigh',
diff --git a/templates/accountProfiles/student2.tt2 b/templates/accountProfiles/student2.tt2
index cea268f..5dba581 100644
--- a/templates/accountProfiles/student2.tt2
+++ b/templates/accountProfiles/student2.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Student',
'comment' => 'A PhD student, having three values set for eduPersonAffiliation: "member" and "student" and "faculty".',
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'eduPersonAffiliation' => ['member', 'student','faculty'],
'eduPersonScopedAffiliation' => ["member@${conf.idp_scope}","student@${conf.idp_scope}","faculty@${conf.idp_scope}"],
'displayName' => 'Damiën Kuijper',
diff --git a/templates/accountProfiles/teacher1.tt2 b/templates/accountProfiles/teacher1.tt2
index 38b298c..f15db36 100644
--- a/templates/accountProfiles/teacher1.tt2
+++ b/templates/accountProfiles/teacher1.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Teacher',
'comment' => 'An active teacher has both "member" and "faculty" values set for eduPersonAffiliation.',
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'eduPersonAffiliation' => ['member', 'faculty'],
'eduPersonScopedAffiliation' => ["member@${conf.idp_scope}", "faculty@${conf.idp_scope}"],
'displayName' => 'Peter Müller',
diff --git a/templates/accountProfiles/teacher2.tt2 b/templates/accountProfiles/teacher2.tt2
index dea6e52..8b8b749 100644
--- a/templates/accountProfiles/teacher2.tt2
+++ b/templates/accountProfiles/teacher2.tt2
@@ -4,7 +4,7 @@
[% SET account_profile = {
'type' => 'Teacher',
'comment' => 'This account provides a limited set of user attributes (eduPersonScopedAffiliation and eduPersonTargetedID).',
- 'uid' => "user${account_id}",
+ 'internal_uid' => "user${account_id}",
'eduPersonScopedAffiliation' => ["member@${conf.idp_scope}", "faculty@${conf.idp_scope}"],
} %]
diff --git a/templates/web/validate_token.tt2.html b/templates/web/validate_token.tt2.html
index 0db47fa..bd04d0e 100644
--- a/templates/web/validate_token.tt2.html
+++ b/templates/web/validate_token.tt2.html
@@ -43,7 +43,7 @@
<table>
<caption>List of user attributes</caption>
[% FOREACH attribute IN account_profile.pairs -%]
- [% NEXT IF attribute.key.match('^(type|comment|uid)$') %]
+ [% NEXT IF attribute.key.match('^(type|comment|internal_uid)$') %]
[% IF attribute.value.isa('SCALAR') -%]
<tr>
--
GitLab