Extract a unique value from SAML assertion attributes, email in particular
After User's being SSO authenticated I would like to extract an email address for further use. While using a java web app as a landing page I am able to get a LDAP ID but fail to get the email address.
While debugging, logs show email related entries r:
<ns2:AttributeStatement> <ns2:Attribute Name="Email Address" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
actual domain:
<ns2:AttributeValue>fname.lname@domain.gov</ns2:AttributeValue>
-----------------
<SAMLIALoginModule: login(): get attribute principal: Email Address>
------------
<com.bea.common.security.internal.service.JAASLoginServiceImpl.login subject=Subject:
Principal: Email Address>
Please suggest how to read this email value.