Identify required/optional attributes in the attributeReleaseContext

Resolving as to-be-wired by the deployer.

Should revisit along with guidance regarding the UI.

Well, I think I'm changing my mind back to where I left off here, which is to not wire the predicate and leave that to the deployer.

On today's dev call, I said I was going to write a test and then wire the predicate by instantiation in a view-state (which we agreed on), but ... writing the test was harder than I thought : mocking the context tree and loading attribute-resolver.xml for example. My preference due to time is to write a Selenium/integration test (of course via the testbed since that's how I wrote the thing anyway), but I don't know how to nor want to try to represent "required" in the view template right now, because it only really makes sense for per-attribute consent (which is disabled by default) and I think other folks are working on consent UIs...at least we should copy whatever uApproveJP is doing I would think.

Maybe some UI/accessibility advice would be helpful too.

So I have a simple unit test for the constructor and a null check, but that's it. I should have caught Rod on the dev call today. Apologies for the timing.

r8533 IsAttributeRequiredPredicate

Can be wired via attribute-release-flow.xml :

and used in attribute-release.vm :

> See net.shibboleth.idp.saml.attribute.mapping.AttributesMapContainer, net.shibboleth.idp.saml.metadata.impl.AttributeMappingNodeProcessor

I missed that. I thought that there should be more. Thanks.

Seems like doing this as an example change to the template post 3.3 makes a lot of sense...

R

Got it. That's way better.