Configuring Custom Roles Claim Rule (Example)
Procedure
-
Enter a Claim rule name, Name and
Email.
Example
-
Enter the configuration in the Custom rule field.
Example
c:[Type == "email"] => issue(Type = "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier", Issuer = c.Issuer, OriginalIssuer = c.OriginalIssuer, Value = c.Value, ValueType = c.ValueType, Properties["http://schemas.xmlsoap.org/ws/2005/05/identity/claimproperties/format"] = "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress");
-
Enter the configuration in the Custom rule field.
=> issue(Type = "TalendCloudDomainName", Value = "<Domain>");In this example, <Domain> is the name to be used as TalendCloudDomainName, for example, tho.talend.com. This makes the value in this field read like=> issue(Type = "TalendCloudDomainName", Value = "tho.talend.com");- If you already logged in Talend Cloud, find the domain name in the Domain field of the
Subscription page of your Talend Management Console.
- Otherwise, three options are available for you to find your domain. For more details, see Find domains.
If you want to map the TalendCloudDomainName value from your Active Directory, use the code reading like:c:[Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname", Issuer == "AD AUTHORITY"] => issue(store = "Active Directory", types = ("TalendCloudDomainName"), query = ";department;{0}", param = c.Value);In this example, the value of the department attribute is taken for TalendCloudDomainName. The value to be used for this department attribute is still the Domain to be found on the Subscription page of your Talend Management Console.
- If you already logged in Talend Cloud, find the domain name in the Domain field of the
Subscription page of your Talend Management Console.
Did this page help you?
If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!