IefPolicies

3.1.21

strings/LinkedIn.xml

                                <ClaimsProvider xmlns="http://schemas.microsoft.com/online/cpim/schemas/2013/06">

    <Domain>linkedin.com</Domain>

    <DisplayName>LinkedIn</DisplayName>

    <TechnicalProfiles>

      <TechnicalProfile Id="LinkedIn-OAuth2">

        <DisplayName>LinkedIn</DisplayName>

        <Protocol Name="OAuth2" />

        <Metadata>

          <Item Key="ProviderName">linkedin</Item>

          <Item Key="authorization_endpoint">https://www.linkedin.com/oauth/v2/authorization</Item>

          <Item Key="AccessTokenEndpoint">https://www.linkedin.com/oauth/v2/accessToken</Item>

          <Item Key="ClaimsEndpoint">https://api.linkedin.com/v2/me</Item>

          <Item Key="scope">r_emailaddress r_liteprofile</Item>

          <Item Key="HttpBinding">POST</Item>

          <Item Key="external_user_identity_claim_id">id</Item>

          <Item Key="BearerTokenTransmissionMethod">AuthorizationHeader</Item>

          <Item Key="ResolveJsonPathsInJsonTokens">true</Item>

          <Item Key="UsePolicyInRedirectUri">false</Item>

          <Item Key="client_id">{{{0}:clientId}}</Item>

        </Metadata>

        <CryptographicKeys>

          <Key Id="client_secret" StorageReferenceId="B2C_1A_LinkedInSecret" />

        </CryptographicKeys>

        <InputClaims />

        <OutputClaims>

          <OutputClaim ClaimTypeReferenceId="issuerUserId" PartnerClaimType="id" />

          <OutputClaim ClaimTypeReferenceId="givenName" PartnerClaimType="firstName.localized" />

          <OutputClaim ClaimTypeReferenceId="surname" PartnerClaimType="lastName.localized" />

          <OutputClaim ClaimTypeReferenceId="identityProvider" DefaultValue="linkedin.com" AlwaysUseDefaultValue="true" />

          <OutputClaim ClaimTypeReferenceId="authenticationSource" DefaultValue="socialIdpAuthentication" AlwaysUseDefaultValue="true" />

        </OutputClaims>

        <OutputClaimsTransformations>

          <OutputClaimsTransformation ReferenceId="ExtractGivenNameFromLinkedInResponse" />

          <OutputClaimsTransformation ReferenceId="ExtractSurNameFromLinkedInResponse" />

          <OutputClaimsTransformation ReferenceId="CreateRandomUPNUserName" />

          <OutputClaimsTransformation ReferenceId="CreateUserPrincipalName" />

          <OutputClaimsTransformation ReferenceId="CreateAlternativeSecurityId" />

          <OutputClaimsTransformation ReferenceId="CreateSubjectClaimFromAlternativeSecurityId" />

        </OutputClaimsTransformations>

        <UseTechnicalProfileForSessionManagement ReferenceId="SM-SocialLogin" />

      </TechnicalProfile>

    </TechnicalProfiles>

  </ClaimsProvider>