# Pass User Attributes

DAB gets user attributes from IdP and can pass the user attributes to the application via header or cookie. You can configure these attributes on Datawiza Cloud Management Console (DCMC).

On DCMC, click the name of your application, then select Attributes. Add New Attributes

To add attribute, you need to set

  • Field - The original name of the user attribute from your IdP.
  • Expected - The name of the user attribute your application is expecting.
  • Type - It could be header or cookie.

See the following screenshot as an example. Add New Attributes in DCMC

For the version after 1.3.9, we add Profile and Mappings tabs to config Attribute Pass:

  1. By default, We will add four basic attributes, email, username, lastName and firstName. Also, you can add other custom attributes.:
    Add New Attributes in DCMC
  2. If you add IdPs in IdP Configuration, the default mappings for basic attributes will be added:
    Add New Attributes in DCMC
    Add New Attributes in DCMC
  3. In previous version, if you have multiple IdPs needed to pass attributes, each IdP need to add config in Attribute Pass tab. For example, if you want to pass first name for Okta and Auth0, you need to config fistName mapping to firstname for Okta and given_name mapping to firstname for Auth0:
    Add New Attributes in DCMC
    Now, after configuring in Profile and Mappings, we just need to add one config: firstName mapping to firstname. Then firstName of Okta and given_name of Auth0 will be passed: Add New Attributes in DCMC

5: Granular Access Control