Access ephemeral SAML attributes from a rule or action without writing to user profile

Problem statement

We want to access incoming user attributes from a SAML IdP inside rules or actions. These are ephemeral, and we do not need to store them in the user profile.


Set the attribute mappings in the connection options under the Mappings tab. Then You will be able to access them in a rule via context.user.attributeName.