1 / 15

Update on the SCHAC Activity

Update on the SCHAC Activity. Diego R. Lopez. The SCHAC individual attributes. Extensions to: The eduPerson schema v. 200312, as defined at http://www.educause.edu/eduperson/ The person schema, as defined by X.521 (2001) The organizationalPerson schema, as defined by X.521 (2001)

abiba
Télécharger la présentation

Update on the SCHAC Activity

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Update on the SCHAC Activity Diego R. Lopez

  2. The SCHAC individual attributes • Extensions to: • The eduPerson schema v. 200312, as defined at http://www.educause.edu/eduperson/ • The person schema, as defined by X.521 (2001) • The organizationalPerson schema, as defined by X.521 (2001) • The inetOrgPerson schema, as defined by RFC 2798 • Defined in terms of: • Name • Syntax • Semantics • Additional references • Examples

  3. SCHAC 1.0.0 • Version 1.0.0 of individual attribute definitions available • Attribute names, syntax and semantics • Categorized using HEP categories • Based on the synchronization of attributes used in schemas from • Croatia (hrEdu) • Finland (funetEdu) • France (supAnn) • Norway/Sweden (norEdu) • Poland (plEdu) • Spain (iris) • Switzerland (swissEdu) • And contributions from other European NRENs and experts worldwide • An initial proposal of LDAP schema under discussion by the group

  4. The HEP Attribute Categories Higher-Education Person: A comparative Analysis of Collaborative Public LDAP Person Object Classes in Higher Education Personal characteristics Contact / Local information Student information Employee information Linkage identifiers (foreign keys) Entry metadata Security attributes and keys Confidentiality / Attribute release / Visibility Authorization, entitlements Group-related attributes Other Attributes http://middleware.internet2.edu/dir/docs/ draft-internet2-mace-dir-higher-ed-person-analysis-latest.htm

  5. SCHAC Attribute Classification Personal characteristics schacMotherTongue schacGender schacDateOfBirth schacPlaceOfBirth schacCountryOfCitizenship schacSn1 schacSn2 schacPersonalTitle Contact / Local information schacHomeOrganization schacHomeOrganizationType schacCountryOfResidence schacUserPresenceID • Employee information • schacPersonalPosition • Linkage identifiers (foreign keys) • schacPersonalPublicUniqueID • schacPersonalUniqueID • schacUUID • Entry metadata • schacExpiryDate • Confidentiality / Attribute release / Visibility • schacUserPrivateAttribute • Authorization, entitlements • schacUserStatus

  6. SCHAC AttributesPersonal Characteristics - I • schacMotherTongue • Two- or three-letter code (ISO 639 - Lang. Representation Codes) • schacGender • One number (ISO 5218 - Representation of Human Sexes) 0 - Not known 1 - Male 9 - Not specified 2 - Female • schacDateOfBirth • YYYYMMDD (RFC 3399 without dashes) • schacPlaceOfBirth • Free string • schacCountryOfCitizenship • Two-letter code (ISO 3166 - Representation of Countries)

  7. SCHAC AttributesPersonal Characteristics - II • schacSn1 • Free string • schacSn2 • Free string • schacPersonalTitle • Free string

  8. SCHAC AttributesContact / Location Information • schacHomeOrganization • Domain name (RFC 1035) • schacHomeOrganizationType • urn:SCHACPREFIX:homeOrgType:<country-code>:<string> urn:SCHACPREFIX:homeOrgType:ch:vho urn:SCHACPREFIX:homeOrgType:es:opi • schacCountryOfResidence • Two-letter code (ISO 3166 - Representation of Countries) • schacUserPresenceID • urn:SCHACPREFIX:presence:<NSS> • <NSS> is a Namespace Specified String (RFC 2141) urn:SCHACPREFIX:presence:xmpp:jperez@univx.es urn:SCHACPREFIX:presence:sip:jose.perez@univx.es

  9. SCHAC AttributesEmployee Information • schacPersonalPosition • urn:SCHACPREFIX:position:<NSS> • <NSS> is a Namespace Specified String (RFC 2141) urn:SCHACPREFIX:position:umk.pl:programmer

  10. SCHAC AttributesLinkage Identifier / Foreign Keys • schacPersonalPublicUniqueID • urn:<SCHACPREFIX>:PublicUniqueID:<country-type>:<idType>:<idValue> urn:SCHACPREFIX:PublicUniqueID:fi:tut.fi:student:16593 urn:SCHACPREFIX:PublicUniqueID:es:uma:alumno:a3b123c12 urn:SCHACPREFIX:PublicUniqueID:se:LIN:87654312 • schacPersonalUniqueID • urn:<SCHACPREFIX>:UniqueID:<country-type>:<idType>:<idValue> urn:SCHACPREFIX:UniqueID:es:NIF:31888222K urn:SCHACPREFIX:UniqueID:fi:FIC:260667-123F urn:SCHACPREFIX:UniqueID:se:NIN:12345678 • schacUUID • RFC 4122 - draft-mealling-uuid-urn-06.txt f81d4fae-7dec-11d0-a765-00a0c91e6bf6

  11. SCHAC AttributesEntry Metadata / Administration Information • schacExpiryDate • YYYYMMDDhhmmss 20060127235959

  12. SCHAC AttributesConfidentiality / Attribute Release (Visibility) • schacUserPrivateAttribute: • Used to model privacy requirements, as expressed by the user and/or the organizational policies • The values are intended to be attribute type identifiers mail telephoneNumber

  13. SCHAC AttributesAuthorization, Entitlements • schacUserStatus • urn:SCHACPREFIX:status:<NSS> • <NSS> is a Namespace Specified String (RFC 2141) urn:SCHACPREFIX:status:uma.es:affiliation:expired urn:SCHACPREFIX:status:uma.es:sendMail:expired urn:SCHACPREFIX:status:uma.es:getMail:active urn:SCHACPREFIX:status:ujl.si:webmail:active?ttl=20060131

  14. SCHAC LDAP Schema The schacGender Attribute attributetype ( schacAttributeType:2 NAME 'schacGender' DESC 'Representation of human sex (see ISO 5218)' EQUALITY integerMatch SINGLE-VALUE SYNTAX 1.3.6.1.4.1.1466.115.121.1.27{1} )

  15. SCHAC LDAP SchemaschacPersonalCharacteristics objectClass objectClass ( schacObjectClass:1 NAME 'schacPersonalCharacteristics' DESC 'Personal characteristics describe the individual person represented by the entry' SUP top AUXILIARY MAY ( schacMotherTongue $ schacGender $ schacDateOfBirth $ schacPlaceOfBirth $ schacCountryOfCitizenship $ schacSn1 $ schacSn2 $ schacPersonalTitle ) )

More Related