Serviço Videocast

Serviços na Federação RCTSaai

Videocast

Link do Serviço: https://videocast.fccn.pt/

O Videocast permite transmitir video, áudio e slides em tempo real, através de uma simples página Web. Poderá ainda incluir chat, twitter e acesso controlado dos utilizadores. O Videocast está disponível para a comunidade académica e científica e é utilizado maioritariamente em eventos institucionais, palestras e workshops.

Instruções de Configuração do Fornecedor de Identidade

Atributos Necessários

O serviço Videocast utiliza os seguintes atributos:

Obrigatórios

Endereço de e-mail
http://middleware.internet2.edu/eduperson/docs/internet2-mace-dir-eduperson-200806.html#mail
Primeiro Nome
http://middleware.internet2.edu/eduperson/docs/internet2-mace-dir-eduperson-200806.html#displayName
Nome a apresentar
http://middleware.internet2.edu/eduperson/docs/internet2-mace-dir-eduperson-200806.html#sn
eduPersonPrincipalName
eduPersonScopedAffiliation

Configurações Software Shibboleth "Identity Provider"

relying-party.xml

<!-- Recorder Educast -->
  <rp:RelyingParty id="https://videocast.fccn.pt" provider=“[entityID do IDP da sua instituição]" defaultSigningCredentialRef="IdPCredential" >
    <rp:ProfileConfiguration xsi:type="saml:SAML2SSOProfile" encryptNameIds="never" />
  </rp:RelyingParty>

attribute-resolver.xml

<!-- ============================== -->
<!--        Givenname               -->
<!-- ============================== -->
<resolver:AttributeDefinition id="givenName" xsi:type="Simple" 
  xmlns="urn:mace:shibboleth:2.0:resolver:ad" 
  sourceAttributeID="[Source no repositorio que possui o givenName]">
  <resolver:Dependency ref="[Connector ao repositorio de atributos]" />
  <resolver:AttributeEncoder xsi:type="SAML1String" 
    xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
    name="urn:mace:dir:attribute-def:INETORGPERSON_GIVENNAME" />
  <resolver:AttributeEncoder xsi:type="SAML2String" 
    xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
    name="urn:oid:2.5.4.42" friendlyName="INETORGPERSON_GIVENNAME" />
</resolver:AttributeDefinition>
 
<!-- ============================== -->
<!--       displayName              -->
<!-- ============================== -->
<resolver:AttributeDefinition id="displayName" xsi:type="Simple" 
  xmlns="urn:mace:shibboleth:2.0:resolver:ad" 
  sourceAttributeID="="[Source no repositorio que possui o displayName]">
  <resolver:Dependency ref="[Connector ao repositorio de atributos]"  />
  <resolver:AttributeEncoder xsi:type="SAML1String" 
    xmlns="urn:mace:shibboleth:2.0:attribute:encoder" 
    name="urn:mace:dir:attribute-def:PERSON_SURNAME" />
  <resolver:AttributeEncoder xsi:type="SAML2String" 
    xmlns="urn:mace:shibboleth:2.0:attribute:encoder" 
    name="urn:oid:2.5.4.4" friendlyName="PERSON_SURNAME" />
</resolver:AttributeDefinition>

<!-- ============================== -->
<!--          Email                 -->
<!-- ============================== -->
<resolver:AttributeDefinition id="email" xsi:type="Simple" 
  xmlns="urn:mace:shibboleth:2.0:resolver:ad" 
  sourceAttributeID="[Source no repositorio que possui o mail]">
  <resolver:Dependency ref="[Connector ao repositorio de atributos]" />
  <resolver:AttributeEncoder xsi:type="SAML1String" 
  xmlns="urn:mace:shibboleth:2.0:attribute:encoder"
  name="urn:mace:dir:attribute-def:INETORGPERSON_MAIL" />
  <resolver:AttributeEncoder xsi:type="SAML2String" 
  xmlns="urn:mace:shibboleth:2.0:attribute:encoder" 
  name="urn:oid:0.9.2342.19200300.100.1.3" 
  friendlyName="INETORGPERSON_MAIL" />
</resolver:AttributeDefinition>

 
<!-- ============================== -->
<!--  eduPersonPrincipalName        -->
<!-- ============================== -->
<resolver:AttributeDefinition id="eduPersonPrincipalName" xsi:type="Scoped" xmlns="urn:mace:shibboleth:2.0:resolver:ad" scope="fccn.pt" sourceAttributeID="[sAMAccountName ou Uid]">
<resolver:Dependency ref="[Connector ao repositorio de atributos]" />
 <resolver:AttributeEncoder xsi:type="SAML1ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder" name="urn:mace:dir:attribute-def:eduPersonPrincipalName" />
 <resolver:AttributeEncoder xsi:type="SAML2ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder" name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" friendlyName="eduPersonPrincipalName" />
</resolver:AttributeDefinition>


<!-- ============================== -->
<!--  eduPersonPrimaryAffiliation   -->
<!-- ============================== -->
<resolver:AttributeDefinition id="eduPersonPrimaryAffiliation" xsi:type="Simple" xmlns="urn:mace:shibboleth:2.0:resolver:ad" sourceAttributeID="[Source no repositorio que possui o PersonAffiliation]">
  <resolver:Dependency ref="[Connector ao repositorio de atributos]" />
  <resolver:AttributeEncoder xsi:type="SAML1String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder" name="urn:mace:dir:attribute-def:eduPersonPrimaryAffiliation" />
  <resolver:AttributeEncoder xsi:type="SAML2String" xmlns="urn:mace:shibboleth:2.0:attribute:encoder" name="urn:oid:1.3.6.1.4.1.5923.1.1.1.5" friendlyName="eduPersonPrimaryAffiliation" />
</resolver:AttributeDefinition>


<!-- ============================== -->
<!--  eduPersonScopedAffiliation    -->
<!-- ============================== -->
<resolver:AttributeDefinition id="eduPersonScopedAffiliation" xsi:type="Scoped" xmlns="urn:mace:shibboleth:2.0:resolver:ad"  scope="[domínio institucional]" >
   <resolver:Dependency ref="eduPersonPrimaryAffiliation" />
   <resolver:AttributeEncoder xsi:type="SAML1ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder" name="urn:mace:dir:attribute-def:eduPersonScopedAffiliation" />
   <resolver:AttributeEncoder xsi:type="SAML2ScopedString" xmlns="urn:mace:shibboleth:2.0:attribute:encoder"  name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" friendlyName="eduPersonScopedAffiliation" />
</resolver:AttributeDefinition>

attribute-filter.xml

<!-- Atributos para o servico Videocast -->
<afp:AttributeFilterPolicy>
  <afp:PolicyRequirementRule xsi:type="basic:AttributeRequesterString" value="https://videocast.fccn.pt" />
        
  <afp:AttributeRule attributeID="givenName">
    <afp:PermitValueRule xsi:type="ANY" />
  </afp:AttributeRule>
  <afp:AttributeRule attributeID="displayName">
    <afp:PermitValueRule xsi:type="ANY"/>
  </afp:AttributeRule>
  <afp:AttributeRule attributeID="email">
    <afp:PermitValueRule xsi:type="ANY"/>
  </afp:AttributeRule>
  <afp:AttributeRule attributeID="eduPersonPrincipalName">
   <afp:PermitValueRule xsi:type="ANY"/>
  </afp:AttributeRule>
  <afp:AttributeRule attributeID="eduPersonScopedAffiliation">
    <afp:PermitValueRule xsi:type="ANY"/>
  </afp:AttributeRule>
</afp:AttributeFilterPolicy>

Page tree