osc identity federation identity-provider protocol
Identity provider protocols
A protocol entry contains information that dictates which mapping rules to use for a given incoming request. An IdP may have multiple supported protocols.
Required attributes:
- mapping_id (string): Indicates which mapping should be used to process federated authentication requests.
Optional attributes:
- remote_id_attribute (string): Key to obtain the entity ID of the Identity Provider from the HTTPD environment. For mod_shib, this would be Shib-Identity-Provider. For mod_auth_openidc, this could be HTTP_OIDC_ISS. For mod_auth_mellon, this could be MELLON_IDP. This overrides the default value provided in keystone.conf.
Usage: osc identity federation identity-provider protocol <COMMAND>
Available subcommands:
osc identity federation identity-provider protocol create— Create protocol for an IDPosc identity federation identity-provider protocol delete— Delete a protocol from an IDPosc identity federation identity-provider protocol list— List protocols for an IDPosc identity federation identity-provider protocol set— Update protocol for an IDPosc identity federation identity-provider protocol show— Get protocols for an IDP