Setting the data type or category of a custom attribute

Set the data type or category of a custom attribute that is being passed to the runtime security services. Setting the data type or category ensures that the runtime security services use the data accurately when evaluating the policy.

About this task

The default data type of an attribute is string. The default category of an attribute is Environment. Use the following procedure to change the type and the category.

Procedure

  1. Open the WebSEAL configuration file.
  2. Optional: Create one or more entries in the [azn-decision-info] stanza for custom attributes, if they do not already exist.
  3. Set the data type or category of a custom attribute by using the [user-attribute-definitions] stanza and entry. Add the stanza if it does not already exist.
    data type
    Define the data type by using the following syntax:
    [user-attribute-definitions]
attr_ID.datatype = data_type
    category
    Define the category by using the following syntax:
    [user-attribute-definitions]
attr_ID.category = category_name

    The value you use for attr_ID must match the attribute identifier you defined in the [azn-decision-info] stanza.

    See [user-attribute-definitions] stanza for the list of values you can use for data type and category.

  4. Save the file.
  5. Restart the WebSEAL server for the changes to take effect.