Replace STS with Custom STS
The STS is a token service used by (relying parties) Portal and Forms Builder for authentication and account provisioning purposes. The STS is built using Windows Identity Foundation principal and it would be possible to replace the out of the box STS with a Custom STS. This topic outlines the information the Custom STS will have to provide to the relying party applications in terms of claims.
Current Responsibilities of STS
STS is responsible for the following items:
- All the authentication for Portal and Forms Builder (Student, Staff, Applicant, and Employer)
- Initiating Student account creation
- Active Directory exceptions
- Applicant account creation
- Request for Information (RFI)
List of Claims
The following claims should be provided by the Custom STS:
- C2kId
- CampusId
- EmployerId
- First Name
- Last Name
- Middle Name
- Name
- Role
- StaffId
- StudentId
- UserId
- Username
See the table below for details about the claims.
Claim Types and Detail
The following table lists an example for the required claim type.
| Claim Name | Claim Type | Sample Value | Source |
|---|---|---|---|
| C2kId | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/c2kid | 1234 | Portal.wpUserRelation.C2KId |
| CampusId | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/campusid | 1000 | Portal.wpUser.CampusId |
| http://schemas.xmlsoap.org/ws/2010/08/identity/claims/email | bwallace@school.com | Portal.wpUser.eMail | |
| EmployerId | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/employerid | 2000 | PlEmployerr.PlEmployerrId |
| First Name | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/fname | Benjamin | Portal.wpUser.FirstName |
| Last Name | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/lname | Wallace | Portal.wpUser.LastName |
| Middle Name | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/mname | Francis | Portal.wpUser.MiddleName |
| Name | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/name | bwallace | Portal.wpUser.UserCode |
| Role | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/userroles | Staff | SySSOConfig.UserRoleType |
| StaffId | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/staffid | 3000 | syStaff.SyStaffId |
| StudentId | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/studentid | 4000 | syStudent.SyStudentId |
| UserId | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/userid | 5000 | Portal.wpUser.UserId |
| Username | http://schemas.xmlsoap.org/ws/2010/08/identity/claims/uname | benwallace | SySSOToken.UserInfo |
