Merge pull request #281 from rglauco/main

fix: SPID attributes aligned to the specs v.1.3

Author: Giuseppe De Marco

docs/FEDERATION_METADATA_POLICY.md

@@ -80,23 +80,23 @@ md = {
      "https://www.spid.gov.it/SpidL3"
    ],
   "claims_supported": [
-      "https://attributes.spid.gov.it/spidCode",
-      "https://attributes.spid.gov.it/name",
-      "https://attributes.spid.gov.it/familyName",
-      "https://attributes.spid.gov.it/placeOfBirth",
-      "https://attributes.spid.gov.it/countyOfBirth",
-      "https://attributes.spid.gov.it/dateOfBirth",
-      "https://attributes.spid.gov.it/gender",
-      "https://attributes.spid.gov.it/companyName",
-      "https://attributes.spid.gov.it/registeredOffice",
-      "https://attributes.spid.gov.it/fiscalNumber",
-      "https://attributes.spid.gov.it/ivaCode",
-      "https://attributes.spid.gov.it/idCard",
-      "https://attributes.spid.gov.it/mobilePhone",
-      "https://attributes.spid.gov.it/email",
-      "https://attributes.spid.gov.it/address",
-      "https://attributes.spid.gov.it/expirationDate",
-      "https://attributes.spid.gov.it/digitalAddress"
+        "https://attributes.eid.gov.it/spid_code",
+        "given_name",
+        "family_name",
+        "place_of_birth",
+        "birthdate",
+        "gender",
+        "https://attributes.eid.gov.it/company_name",
+        "https://attributes.eid.gov.it/registered_office",
+        "https://attributes.eid.gov.it/fiscal_number",
+        "https://attributes.eid.gov.it/company_fiscal_number",
+        "https://attributes.eid.gov.it/vat_number",
+        "document_details",
+        "phone_number",
+        "email",
+        "https://attributes.eid.gov.it/e_delivery_service",
+        "https://attributes.eid.gov.it/eid_exp_date",
+        "address"
    ],
   "grant_types_supported": [
     "authorization_code",

docs/technical_specifications/RELYING_PARTY.md

@@ -101,14 +101,14 @@ SPID_REQUESTED_CLAIMS = getattr(
     "RP_REQUIRED_CLAIMS",
     {
         "id_token": {
-            "https://attributes.spid.gov.it/familyName": {"essential": True},
-            "https://attributes.spid.gov.it/email": {"essential": True},
+            "https://attributes.eid.gov.it/family_name": {"essential": True},
+            "https://attributes.eid.gov.it/email": {"essential": True},
         },
         "userinfo": {
-            "https://attributes.spid.gov.it/name": None,
-            "https://attributes.spid.gov.it/familyName": None,
-            "https://attributes.spid.gov.it/email": None,
-            "https://attributes.spid.gov.it/fiscalNumber": None,
+            "https://attributes.eid.gov.it/given_name": None,
+            "https://attributes.eid.gov.it/family_name": None,
+            "https://attributes.eid.gov.it/email": None,
+            "https://attributes.eid.gov.it/fiscal_number": None,
         },
     },
 )

examples/federation_authority/dumps/example.json

@@ -15,15 +15,43 @@
     "email": "",
     "origin": null,
     "attributes": {
-      "https://attributes.spid.gov.it/fiscal_number": "8sada89s7da89sd7a98sd78",
-      "given_name": "peppe",
-      "family_name": "maradona",
-      "email": "[email protected]",
-      "fiscal_number": "8sada89s7da89sd7a98sd78",
-      "sub": "da750f319fa08358b1342d9de6156f590c8f97c6b5d33a9dfd71657e121ecc58",
-      "username": "http://127.0.0.1:8002/oidc/op/__da750f319fa08358b1342d9de6156f590c8f97c6b5d33a9dfd71657e121ecc58",
-      "first_name": "antonio",
-      "last_name": "rossi"
+      "https://attributes.eid.gov.it/spid_code":"ABCD123456789A",
+      "given_name":"peppe",
+      "family_name":"maradona",
+      "place_of_birth":{
+        "region":"NA",
+        "locality":"F839"
+      },
+      "birthdate":"1980-10-10",
+      "gender":"M",
+      "https://attributes.eid.gov.it/company_name":"Maradona Inc",
+      "https://attributes.eid.gov.it/registered_office":{
+        "formatted":"Via del miracolo 21 80100 Napoli"
+      },
+      "https://attributes.eid.gov.it/fiscal_number":"TINIT-ABCXYZ00W00Z000Z",
+      "https://attributes.eid.gov.it/company_fiscal_number":"TINIT-ABCXYZ00W00Z000Z",
+      "https://attributes.eid.gov.it/vat_number":"VATIT-12345678901",
+      "document_details":{
+        "type":"cartaIdentita",
+        "document_number":"AS09452389",
+        "issuer":{
+        "name":"ComuneNapoli"},
+        "date_of_issuance":"2016-01-02",
+        "date_of_expiry":"2026-01-31"
+      },
+      "phone_number":"39041322222",
+      "email":"[email protected]",
+      "https://attributes.eid.gov.it/e_delivery_service":"[email protected]",
+      "https://attributes.eid.gov.it/eid_exp_date":"2050-01-01",
+      "address": {
+        "street_address":"503,Washington Avenue",
+        "postal_code":"12401",
+        "locality":"Kingston",
+        "region":"New york",
+        "country_code":"US"
+      },
+      "sub": "76f6777878cc718fad7a6c4337268b33276a8492ef8e036d8cb0f421780d4ede",
+      "username": "http://127.0.0.1:8002/oidc/op__76f6777878cc718fad7a6c4337268b33276a8492ef8e036d8cb0f421780d4ede"
     },
     "groups": [],
     "user_permissions": []
@@ -45,12 +73,46 @@
     "email": "",
     "origin": null,
     "attributes": {
-      "https://attributes.spid.gov.it/fiscal_number": "AATTTJDFKSKDF89",
-      "given_name": "antonio",
-      "family_name": "rossi",
-      "email": "[email protected]",
-      "fiscal_number": "8sada89s7da89sd7a98sd78"
-    },
+        "https://attributes.eid.gov.it/spid_code": "ABCD123456789A",
+        "given_name": "antonio",
+        "family_name": "rossi",
+        "place_of_birth": {
+          "region": "NA",
+          "locality": "F839"
+        },
+        "birthdate": "1980-10-10",
+        "gender": "male",
+        "https://attributes.eid.gov.it/company_name": "AgID",
+        "https://attributes.eid.gov.it/registered_office": {
+            "formatted":"via Listz 21 00144 Roma"
+        },
+        "https://attributes.eid.gov.it/fiscal_number": "TINIT-AATTTJDFKSKDF89",
+        "https://attributes.eid.gov.it/company_fiscal_number": "TINIT-ABCXYZ00W00Z000Z",
+        "https://attributes.eid.gov.it/vat_number": "VATIT-12345678901",
+        "document_details": {
+          "type": "cartaIdentita",
+          "document_number": "AS09452389",
+          "issuer": {
+            "name": "ComuneRoma"
+          },
+          "date_of_issuance": "2015-01-02",
+          "date_of_expiry": "2025-01-31"
+        },
+        "phone_number": "39041322222",
+        "email": "[email protected]",
+        "https://attributes.eid.gov.it/e_delivery_service": "[email protected]",
+        "https://attributes.eid.gov.it/eid_exp_date": "2049-01-01",
+        "address": {
+          "street_address": "503,Washington Avenue",
+          "postal_code": "12401",
+          "locality": "Kingston",
+          "region": "New york",
+          "country_code": "US"
+        },
+        "sub": "da750f319fa08358b1342d9de6156f590c8f97c6b5d33a9dfd71657e121ecc58",
+        "username": "http://127.0.0.1:8000/oidc/op/__da750f319fa08358b1342d9de6156f590c8f97c6b5d33a9dfd71657e121ecc58"
+      },
+
     "groups": [],
     "user_permissions": []
   }
@@ -71,13 +133,12 @@
     "email": "[email protected]",
     "origin": null,
     "attributes": {
-      "sub": "da750f319fa08358b1342d9de6156f590c8f97c6b5d33a9dfd71657e121ecc58",
-      "username": "http://127.0.0.1:8000/oidc/op/__da750f319fa08358b1342d9de6156f590c8f97c6b5d33a9dfd71657e121ecc58",
-      "first_name": "antonio",
-      "last_name": "rossi",
-      "email": "[email protected]",
-      "fiscal_number": "AATTTJDFKSKDF89"
-    },
+          "https://attributes.eid.gov.it/fiscal_number": "AATTTJDFKSKDF89",
+          "given_name": "antonio",
+          "family_name": "rossi",
+          "email": "[email protected]",
+          "fiscal_number": "8sada89s7da89sd7a98sd78"
+        },
     "groups": [],
     "user_permissions": []
   }
@@ -306,22 +367,23 @@
           "https://www.spid.gov.it/SpidL3"
         ],
         "claims_supported": [
-          "https://attributes.spid.gov.it/spidCode",
-          "given_name",
-          "family_name",
-          "place_of_birth",
-          "date_of_birth",
-          "gender",
-          "https://attributes.spid.gov.it/companyName",
-          "https://attributes.spid.gov.it/registeredOffice",
-          "https://attributes.spid.gov.it/fiscal_number",
-          "https://attributes.spid.gov.it/ivaCode",
-          "https://attributes.spid.gov.it/idCard",
-          "https://attributes.spid.gov.it/mobilePhone",
-          "email",
-          "address",
-          "https://attributes.spid.gov.it/expirationDate",
-          "https://attributes.spid.gov.it/digitalAddress"
+            "https://attributes.eid.gov.it/spid_code",
+            "given_name",
+            "family_name",
+            "place_of_birth",
+            "birthdate",
+            "gender",
+            "https://attributes.eid.gov.it/company_name",
+            "https://attributes.eid.gov.it/registered_office",
+            "https://attributes.eid.gov.it/fiscal_number",
+            "https://attributes.eid.gov.it/company_fiscal_number",
+            "https://attributes.eid.gov.it/vat_number",
+            "document_details",
+            "phone_number",
+            "email",
+            "https://attributes.eid.gov.it/e_delivery_service",
+            "https://attributes.eid.gov.it/eid_exp_date",
+            "address"
         ],
         "grant_types_supported": [
           "authorization_code",
@@ -668,22 +730,23 @@
             "https://www.spid.gov.it/SpidL3"
           ],
           "claims_supported": [
-              "https://attributes.spid.gov.it/spidCode",
-              "given_name",
-              "family_name",
-              "place_of_birth",
-              "date_of_birth",
-              "gender",
-              "https://attributes.spid.gov.it/companyName",
-              "https://attributes.spid.gov.it/registeredOffice",
-              "https://attributes.spid.gov.it/fiscal_number",
-              "https://attributes.spid.gov.it/ivaCode",
-              "https://attributes.spid.gov.it/idCard",
-              "https://attributes.spid.gov.it/mobilePhone",
-              "email",
-              "address",
-              "https://attributes.spid.gov.it/expirationDate",
-              "https://attributes.spid.gov.it/digitalAddress"
+            "https://attributes.eid.gov.it/spid_code",
+            "given_name",
+            "family_name",
+            "place_of_birth",
+            "birthdate",
+            "gender",
+            "https://attributes.eid.gov.it/company_name",
+            "https://attributes.eid.gov.it/registered_office",
+            "https://attributes.eid.gov.it/fiscal_number",
+            "https://attributes.eid.gov.it/company_fiscal_number",
+            "https://attributes.eid.gov.it/vat_number",
+            "document_details",
+            "phone_number",
+            "email",
+            "https://attributes.eid.gov.it/e_delivery_service",
+            "https://attributes.eid.gov.it/eid_exp_date",
+            "address"
           ],
           "grant_types_supported": [
             "authorization_code",
@@ -1443,22 +1506,23 @@
           "https://www.spid.gov.it/SpidL3"
         ],
         "claims_supported": [
-            "https://attributes.spid.gov.it/spidCode",
+            "https://attributes.eid.gov.it/spid_code",
             "given_name",
             "family_name",
             "place_of_birth",
-            "date_of_birth",
+            "birthdate",
             "gender",
-            "https://attributes.spid.gov.it/companyName",
-            "https://attributes.spid.gov.it/registeredOffice",
-            "https://attributes.spid.gov.it/fiscal_number",
-            "https://attributes.spid.gov.it/ivaCode",
-            "https://attributes.spid.gov.it/idCard",
-            "https://attributes.spid.gov.it/mobilePhone",
+            "https://attributes.eid.gov.it/company_name",
+            "https://attributes.eid.gov.it/registered_office",
+            "https://attributes.eid.gov.it/fiscal_number",
+            "https://attributes.eid.gov.it/company_fiscal_number",
+            "https://attributes.eid.gov.it/vat_number",
+            "document_details",
+            "phone_number",
             "email",
-            "address",
-            "https://attributes.spid.gov.it/expirationDate",
-            "https://attributes.spid.gov.it/digitalAddress"
+            "https://attributes.eid.gov.it/e_delivery_service",
+            "https://attributes.eid.gov.it/eid_exp_date",
+            "address"
         ],
         "grant_types_supported": [
           "authorization_code",

examples/provider/dumps/example.json

@@ -15,15 +15,39 @@
     "email": "",
     "origin": null,
     "attributes": {
-      "https://attributes.spid.gov.it/fiscal_number": "8sada89s7da89sd7a98sd78",
+      "https://attributes.eid.gov.it/fiscal_number":"TINIT-ABCXYZ00W00Z000Z",
       "given_name": "peppe",
       "family_name": "maradona",
+      "place_of_birth":{
+        "region":"NA",
+        "locality":"F839"
+      },
+      "birthdate":"1980-10-10",
+      "gender":"male",
       "email": "[email protected]",
-      "fiscal_number": "8sada89s7da89sd7a98sd78",
+      "email_verified": "true",
+      "document_details":{
+        "type":"cartaIdentita",
+        "document_number":"AS09452389",
+        "issuer":{
+          "name":"ComuneNapoli"
+        },
+        "date_of_issuance":"2017-01-02",
+        "date_of_expiry":"2027-01-31"
+      },
       "sub": "5f32567af7e0e77ea09de8521ae5f6a0fd6984176e99a6bc694a8a0198231dc3",
       "username": "http://127.0.0.1:8000/oidc/op/__5f32567af7e0e77ea09de8521ae5f6a0fd6984176e99a6bc694a8a0198231dc3",
-      "first_name": "peppe",
-      "last_name": "maradona"
+      "phone_number":"39081322222",
+      "phone_number_verified":"true",
+      "https://attributes.eid.gov.it/e_delivery_service":"[email protected]",
+      "https://attributes.eid.gov.it/landline_number ":"12345678901",
+      "address":{
+          "street_address":"Via Liszt 21",
+          "postal_code":"00144",
+          "locality":"Roma",
+          "region":"RM",
+          "country_code":"IT"
+      }
     },
     "groups": [],
     "user_permissions": []
@@ -45,11 +69,38 @@
     "email": "",
     "origin": null,
     "attributes": {
-      "https://attributes.spid.gov.it/fiscal_number": "AATTTJDFKSKDF89",
-      "given_name": "antonio",
-      "family_name": "rossi",
-      "email": "[email protected]",
-      "fiscal_number": "8sada89s7da89sd7a98sd78"
+      "https://attributes.eid.gov.it/fiscal_number":"TINIT-AATTTJDFKSKDF89",
+      "given_name": "peppe",
+      "family_name": "maradona",
+      "place_of_birth":{
+        "region":"NA",
+        "locality":"F839"
+      },
+      "birthdate":"1990-10-10",
+      "gender":"male",
+      "email": "[email protected]",
+      "email_verified": "true",
+      "document_details":{
+        "type":"cartaIdentita",
+        "document_number":"AS01111189",
+        "issuer":{
+          "name":"ComuneRoma"
+        },
+        "date_of_issuance":"2017-01-02",
+        "date_of_expiry":"2027-01-31"
+      },
+      "sub": "5f32567af7e0e77ea09de8521ae5f6a0fd6984176e99a6bc694a8a0198231dc3",
+      "username": "http://127.0.0.1:8000/oidc/op/__5f32567af7e0e77ea09de8521ae5f6a0fd6984176e99a6bc694a8a0198231dc3",
+      "phone_number":"39081322222",
+      "phone_number_verified":"true",
+      "https://attributes.eid.gov.it/e_delivery_service":"[email protected]",
+      "address":{
+          "street_address":"Via Liszt 21",
+          "postal_code":"00144",
+          "locality":"Roma",
+          "region":"RM",
+          "country_code":"IT"
+      }
     },
     "groups": [],
     "user_permissions": []