---------- Forwarded message ---------
Od: Service Desk <servicedesk@tu-dresden.de>
Date: po 22. 7. 2019 v 13:26
Subject: Re: [Ticket:2019071941003311] Attributes missing from [https://idp2.tu-dresden.de/idp/shibboleth]
To: <kosarko@ufal.mff.cuni.cz>
Cc: <lindat-technical@ufal.mff.cuni.cz>, <kilian.gebhardt@tu-dresden.de>


Dear Ondřej Košarko,

Processing your ticket has resulted in this solution:

The service provider mentioned requires personal data.
By the instruction of the information security department of the TU Dresden (SG 3.5) we are not allowed to release such unchecked.
In order to activate the required attributes, you must first complete the application [1] and send it signed to TU Dresden's Service Desk, which can be found in the ZIH service catalogue [2] under the section Authentification Services [3]. As soon as SG 3.5 has checked the information and granted the approval, the attributes can be released by us.

[1] https://tu-dresden.de/zih/dienste/ressourcen/dateien/shibboleth-antragsformular-20181126-3.pdf?lang=en
[2] https://tu-dresden.de/zih/dienste/service-katalog
[3] https://tu-dresden.de/zih/dienste/service-katalog/arbeitsumgebung/authentifizierungsdienst

Should these steps not resolve your issue, do not hesitate to get back to us. Unless you react to this message, your ticket will be closed automatically after 10 days.
Please write a new message for other issues.

Kind regards,
Darja Pewsner

Service Desk – ZIH

  TU Dresden, Service Desk
  Mo-Fr: 08:00-19:00
  Nöthnitzer Str. 46, APB, Raum E036
  01187 Dresden

  Telefon: +49-351-463-40000 
  Telefax: +49-351-463-42328

http://tu-dresden.de/zih

19.07.2019 14:00 - Ondřej Košarko schrieb:

> To whom it may concern:
>
> On behalf of one of the Service Providers from CLARIN Service Provider
> Federation (SPF) [1]
> we would like to inform you that users from your home organisation tried to
> access a protected
> service or resource but were unable to do so because your Identity Provider
> has not released
> all the mandatory attributes.
>
> All the Service Providers in the CLARIN SPF are:
> 1) implementing the GÉANT Data Protection Code of Conduct [2];
> 2) are members of the REFEDS Research and Scholarship Entity Category [3];
> 3) are CLARIN members and have the http://clarin.eu/category/clarin-member
> Entity
> Category which you can use for filtering.
>
> Therefore, we kindly ask you to implement a filter releasing the required
> attributes to all
> CLARIN SPF members.The latest authentication attempt was to:
> SP entityID=https://ufal-point.mff.cuni.cz/shibboleth/eduid/sp
> Attributes released:
> eduPersonEntitlement
> eduPersonScopedAffiliation
>
> Please, see the recommendation from the DFN federation which attributes to
> release to CLARIN SPF SPs and how to do it:
> https://wiki.aai.dfn.de/de:shibidp3attrfilter#freigabe_der_wichtigsten_attribute_fuer_clarin-sps
> or see the CLARIN's attribute profile described at
> https://www.clarin.eu/content/attributes-service-provider-federation .
>
> Kind Regards,
> Ondrej Kosarko
> LINDAT/CLARIN
>
> [1] https://www.clarin.eu/ and
> https://www.clarin.eu/content/service-provider-federation
> [2]
> http://geant3plus.archive.geant.net/uri/dataprotection-code-of-conduct/V1/Pages/default.aspx
> [3] https://refeds.org/category/research-and-scholarship
>