Class SamlRealmSettings.AttributeSetting

java.lang.Object
org.elasticsearch.xpack.core.security.authc.saml.SamlRealmSettings.AttributeSetting
Enclosing class:
SamlRealmSettings

public static final class SamlRealmSettings.AttributeSetting extends Object
The SAML realm offers a number of settings that rely on attributes that are populate by the Identity Provider in the SAML Response. Each attribute has 2 settings:
  • The name of the SAML attribute to use
  • A java pattern (regex) to apply to that attribute value in order to extract the substring that should be used.
For example, the Elasticsearch User Principal could be configured to come from the SAML "mail" attribute, and extract only the local-port of the user's email address (i.e. the name before the '@'). This class encapsulates those 2 settings.