Hello Salvo,
This is a good idea and I think 90% of the task is already done.
If you take a look at the getUserInfo of the ldap resolver you will see, that you can map any field you like to.
This way you can "invent" new fields in privacyidea and map these to ldap attributes.
Maybe in samlcheck we should return all available keys of the
user.info dictionary.
Kind regards
Cornelius
Cornelius Kölbel
+49 151 2960 1417
NetKnights GmbH
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel
-------- Ursprüngliche Nachricht --------
Von: Salvo Rapisarda <
sdrap...@gmail.com>
Datum: 18.02.2016 11:45 (GMT+01:00)
An: privacyidea <
priva...@googlegroups.com>
Betreff: [privacyidea] Features - SAML dynamic/custom attributes