Actions Adds Default Mapping Properties on SAML2 Web Addon but Rules Do Not

rueben.tiow · February 14, 2024, 4:27pm

Problem statement

The default mapping options on an application that uses the SAML web addon are the following:

{ 
  "user_id": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier", 
  "email": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress", 
  "name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name", 
  "given_name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname",
  "family_name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname", 
  "upn": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn", 
  "groups": "http://schemas.xmlsoap.org/claims/Group" 
}

These properties are added even though other properties are being added in the Action. When using rules, the behavior is different. Adding properties from within rules would not display those properties.

Solution

As a workaround, so the default mapping is not used, add an empty mapping on the addon by following the steps in the following document:

Enable SAML2 Web App Addon

Be sure to set properties mapped on the actions that will be shown.

Topic		Replies	Views
SAML Attribute Mapping in Actions Knowledge Articles saml , rule , actions , saml-attributes	1	4913	August 12, 2022
SAML Addon Mappings from ID Token Custom Claims in Actions Knowledge Articles mapping , saml-addon , auth0-as-idp	1	16	August 21, 2024
SAML mapping issues Help auth0 , saml2	1	3477	May 20, 2020
Migrating Rule to Action WS-Fed with SAML mappings Help custom-webtasks , deprecations	2	1366	February 21, 2024
Actions not working for SAML2 application settings (mapping) as rules Help login-experience , new-universal-login-experience	2	1160	February 22, 2024

Actions Adds Default Mapping Properties on SAML2 Web Addon but Rules Do Not

Problem statement

Solution

Related Topics