|
|
|
Attributes can be included in assertions for use by servlets, web, or custom applications to display customized content for a user or enable other custom features. User attributes, DN attributes, or static data can all be passed from the producer to the consumer in an assertion. When used with web applications, attributes can offer fine-grained access control by limiting what a user can do at the consumer. For example, you can send an attribute named Authorized Amount and set it to a maximum dollar amount that the user can spend at the consumer.
Attributes take the form of name/value pairs and include information, such as the user's mail address or business title, or an approved spending limit for transactions at the consumer. When the consumer receives the assertion, it takes the attributes and makes them available to applications as HTTP header variables or HTTP cookie variables.
To pass the attributes, configure a response. The responses available for this purpose are:
The HTTP headers and HTTP cookies have size restrictions that assertion attributes cannot exceed. The size restrictions are as follows:
Configure attributes in the Attributes tab of the Affiliates dialog.
| Copyright © 2010 CA. All rights reserved. | Email CA about this topic |