'ldap1' => array(
'ldap:LDAP',
'hostname' => 'ldap1.example.com',
'debug' => true,
'enable_tls' => false,
'attributes' => array('uid','sn','cn','givenName','mail'),
'search.enable' => true,
'search.base' => 'ou=people,dc=hku,dc=nl',
'search.attributes' => array('mail'),
'authproc' => array(
50 => array(
'class' => 'ldap:AttributeAddFromLDAP',
'authsource' => 'ldap2',
'attributes' => array('extra'),
'search.filter' => '(mail=%mail%)'
)
),
),
'ldap2' => array(
'ldap:LDAP',
'hostname' => 'ldap2.example.com',
'enable_tls' => false,
'attributes' => array('uid', 'sn', 'cn', 'givenName', 'mail', 'extra'),
'search.enable' => true,
'search.base' => 'ou=people,dc=hku,dc=nl',
'search.attributes' => array('mail')
)
'authproc' => array(
50 => array(
'class' => 'ldap:AttributeAddFromLDAP',
'authsource' => 'ldap2',
'attributes' => array('extra'),
'search.filter' => '(mail=%mail%)'
)
),
The extra attributes are probably not gonna show up when you use the 'test authentication sources'-tab... That will just test an authentication source.. What you need is a test-SP.
The extra attributes are probably not gonna show up when you use the 'test authentication sources'-tab... That will just test an authentication source.. What you need is a test-SP.
According to the documentation you can put authproc fiters into the SP
metadata, into the IDP metadata, into authsources or SSP's main config.php:
https://simplesamlphp.org/docs/stable/simplesamlphp-authproc#section_1
HTH,
-peter