...
- The group must contain the users
- The method type must be "SPI Mobile PKI" (selected in Mobile PKI method creation)
Finnish Trust Network specific
...
configuration
By setting Compatibility Flag FinnishTrustNetwork for the MPKI method, the application friendly name can be displayed on Mobile device while authenticate authenticating with ETSI MSS. The parameter is passed as an additional service to the Mobile Signature Service Provider (MSSP) within MSS Signature Request:
| Code Block |
|---|
<Service>
<Description>
<mssURI>http://mss.ficom.fi/TS102204/v1.0.0#DisplayName</mssURI>
</Description>
<DisplayName xmlns="http://mss.ficom.fi/TS102204/v1.0.0#">Friendly name</DisplayName>
</Service> |
Acting as broker
When SSO acts as a broker this parameter is configured within application metadata as client_name. It also requres to add AllowFtnSpname=true to the Configuration string fieldApplication friendly name can be set in the application metadata. Trusted applications in Finnish Trust Network can pass the friendly name in authentication request, but it requires conf string AllowFtnSpname=true. For more information please check OAuth 2.0 and integration guide - SSOActing as IDP
The spname parameter can be also overwritten with a value from another trusted broker in the Finnish Trust Network. To enable this option add FinnishTrustNetwork flag to the Compatibility flags field in the method configuration and SAML Integration Guide.