adn-agov-iam-project/patterns/9a8294b080ea769d22924af0_authStatesFile/Fetch_Attributes.xml

<AuthState name="${state.entry}" final="false" class="ch.nevis.idm.authstate.IdmGetPropertiesState" resumeState="false">
	<ResultCond name="ok" next="${state.entry}_Check_new_LOA"/>
	<ResultCond name="insufficientLoa" next="${state.failed}"/>
	<ResultCond name="noRoleLevel" next="${state.exit.1}"/>
	<Response value="AUTH_CONTINUE">
		<Gui name="internal_error">
			<GuiElem name="transferId" type="hidden" value="${request:traceId}" optional="true"/>
		</Gui>
	</Response>
	<propertyRef name="nevisIDM_Connector"/>
	<!-- Returned Attributes in SecToken -->
	<property name="client.name" value="${param.client.name}"/>
	<property name="user.attributes" value="${param.attributes}"/>
	<property name="user.properties" value="${param.properties}"/>
	<property name="user.cred.context_password1.state" value="true"/>
	<property name="chooseDefaultProfile" value="true"/>
	<property name="forceDataReload" value="true"/>
	<property name="userExtId" value="${sess:ch.nevis.session.userid}"/>
	<property name="detaillevel.user" value="HIGH"/>
	<property name="detaillevel.profile" value="HIGH"/>
	<property name="detaillevel.role" value="MEDIUM"/>
	<property name="detaillevel.authorization" value="HIGH"/>
	<property name="detaillevel.dataroom" value="LOW"/>
	<property name="detaillevel.credential" value="HIGH"/>
	<property name="detaillevel.property" value="HIGH"/>
	<property name="detaillevel.unit" value="LOW"/>
	<property name="detaillevel.default" value="EXCLUDE"/>
</AuthState>

<AuthState name="${state.entry}_Check_new_LOA" class="ch.nevis.esauth.auth.states.scripting.ScriptState" final="false" resumeState="false">
	<ResultCond name="ok" next="${state.done}"/>
	<ResultCond name="insufficientLoa" next="${state.failed}"/>
	<Response value="AUTH_CONTINUE">
		<Gui name="not_used"/>
	</Response>
	<property name="script" value="file:///var/opt/nevisauth/default/conf/checkInsufficientLoa.groovy"/>
</AuthState>