After validating a user, the login server can transmit a set of attributes to the connected service. All protocols transmit a user identifier, which in our case is usually the TU ID. It is also possible to transmit additional attributes. You can use these attributes to implement your access control, among other things.

These attributes must be activated individually for each service, as certain attributes, such as the matriculation number, require special protection.

On the Hello World page of the login server, you can see for yourself which attributes are available for your TU ID.

Please note that not all TU IDs have the same attributes available; for example, employees do not usually have a matriculation number.

The complete list of attributes is available for download in the attribute list (opens in new tab).