Data model 1.2
- Data: name of the data field
- Example: example of the data
- Attribute name: name of the attribute in the SAML ja OIDC -protocols
- Count:
- Multivalue
- i.e. a single person may have one or more such attributes. For example, one person may have two school attributes, which is fairly typical case with a teacher having affiliations with several schools.
- See rules of the multivalue attributes (only in Finnish) Moniarvoisten attribuuttien säännöt
- In the datamodel 1.2. the treatment rules of multivalue attributes has been published.
- Single value
- i.e. a single person may have only one. For example, one person may have only one surname attribute.
- Multivalue
- Explanation: description of the used value
- Source: descrition of the source of the data field wheather its education provider or Finnish National Agendy of Education (EDUFI)
| Status | Data | Example | Attribute names (SAML ja OIDC) | Count | Explanation | Source |
| 1.0 | Family name |
| urn:oid:2.5.4.4 (SAML) family_name (OIDC) | Single value | The last/family name of the user. | Education provider |
| 1.0 | First name |
| urn:oid:2.5.4.42 (SAML) given_name (OIDC) | Single value | The first/given name of the user. | Education provider |
1.0 | User ID |
| urn:mpass.id:uid | Single value | The unique identifier of the authenticated user. Currently recommended identifier for identifying the user. NOTE: will change if the user moves to another user registry. | Education provider |
1.0 Transition period until 31.12.2022 | CryptID (legacy) | f0ba7691aeff3ef2302d6edce5303641@ldap_test | urn:mpass.id:legacyCryptId | Single value | The legacy (national) cryptID of the user divided to two parts with @ -character. The left-side contains the cryptID of the user as right-side contains an identifier to the source registry. For instance:. This attribute is issued for legacy reasons, avoid using it if possible. | Education provider |
1.0 Transition period until 31.12.2022. | Strengthened CryptID | 9ecb8b0256d0c177320037322cf87e4f1211f 2df45a2f8e4a667ca5b24a10e89@ldap_test. | urn:mpass.id:legacyCryptIde | Single value | A strengthened version of the legacy cryptID (see above) of the user, divided to two parts with @ -character. The left-side contains the strengthened (encrypted by MPASS) version of the cryptID of the user as right-side contains an identifier to the source registry. For instance: This attribute is issued for legacy reasons, avoid using it if possible. | MPASSid |
| 1.0 | School code given by Statistics Finland | 00000 | urn:mpass.id:schoolCode | Multivalue | The school code of the authenticated user. See official school codes by Statistics Finland: https://www.stat.fi/tup/oppilaitosrekisteri/index_en.html See official school codes of the Statistics Finland published by EDUFI: https://koski.opintopolku.fi/koski/dokumentaatio/koodisto/oppilaitosnumero/latest | Education provider |
| 1.0 | Name of educational institution | Tuntematon | urn:mpass.id:school | Multivalue | The human-readable name of the school of the authenticated user. School name is retrieved based on a value of urn:mpass.id:schoolCode. If no name is found this attribute can be empty. | Finnish National Agency for Education |
1.2. New! | School code with school name | 00000;Tuntematon | urn:mpass.id:schoolInfo | Multivalue | Combination of the school code and official name of the educational institution separated with semicolon. | |
| 1.0 | Teaching group | 8A or 3B. | urn:mpass.id:class | Single value | The class/group-information of the authenticated user. | Education provider |
| 1.0 | Grade | 8 or 3 | urn:mpass.id:classLevel | Single value | The class/level-information of the authenticated user. | Education provider |
1.2 New! Transition period until 31.12.2022 | Role v.1.1 | Helsinki;32132;9A;Oppilas | urn:mpass.id:role_v1.1 | Multivalue | The role of the user. See accepted values (only in Finnish) Sallitut roolit The role consists of four parts, divided with a semicolon (;) character. First education provider's name, followed by school code, group and role in the group.
| Education provider |
1.0 | Role | 1.2.246.562.10.494695390410;32132;9A;Oppilas | urn:mpass.id:role | Multivalue | The content of the role attribute has changed in datamodel 1.2!
The role of the user. See accepted values (only in Finnish) Sallitut roolit The role consists of four parts, divided with a semicolon (;) character. First education provider-OID, followed by school code, group and role in the group. | Education provider |
| 1.1 | National learner ID
| 1.2.246.562.24.10000000008 | urn:oid:1.3.6.1.4.1.16161.1.1.27 | Single value | The national learner id is a permanent 11-digit identifier to identify the learner i.e. the pupil or student. The identifier is presented as an OID on branch 1.2.246.562.24. Eleventh digit of the identifier is a IBM-1-3-7 checksum of the first ten digits. | Education provider |
| 1.1 | Education provider ID given by EDUFI | 1.2.246.562.10.494695390410 | urn:mpass.id:educationProviderId | Multivalue | The education provider id is a permanent identifier to identify the education provider i.e. the organization providing education. The identifier is presented as an OID on branch 1.2.246.562.10. The majority of primary and secondary education providers are municipalities in Finland. | Finnish National Agency for Education |
| 1.1 | Education provider name | Virallinen nimi | urn:mpass.id:educationProvider | Multivalue | The education provider is the human-readable name of the education provider. | Finnish National Agency for Education |
| 1.2 New! | Education provider ID with education provider name | 1.2.246.562.10.494695390410;Virallinen nimi | urn:mpass.id:educationProviderInfo | Multivalue | Combination of the education provider's organisation-OID and official name. Separated by semicolon. | Finnish National Agency for Education |