Joint web login service
Joint web login service is used for login (authentication) to the common services delivered by SWAMID / SUNET and GÉANT, such as Zoom and JU-Play.
General description of SAML2 WebSSO, used by the Identity Provider (IdP) at Jönköping University
The service provides authentication of users which have an electronic identity at Jönköping University, together with release of attributes pertaining to the authenticated user. Jönköping University is a member of SWAMID, the Swedish identity federation for Research and higher education within SUNET. The service has been deployed in accordance with SWAMID’s policy and encompassing rules and guidelines which have been laid down by SWAMID.
Policy for personal integrity
The service adheres to the policy for the handling of personal data which has been published by Jönköping University in accordance with Swedish law. The present policy is published on ju.se/en/it-helpdesk.html External link, opens in new window.
The service and limitations of service
Jönköping University undertakes to guarantee the availability of the service in accordance with Jönköping University’s requirements and expectations. The process for creation, deletion and maintenance of electronic identities at Jönköping University is described here External link, opens in new window.. Jönköping University follows SWAMID’s recommendations for release of attributes based upon entity categories. Jönköping University reserves the right to change the actually released attributes, having communicated such with a service provider, regardless of the recommendations from SWAMID concerning the entity category the service provider has been placed in.
Service and support
Questions and faults regarding Jönköping University and its SAML2 WebSSO service should be directed to the following local support channels:
Phone: +46 (0)36-101112
Questions and faults: helpdesk.ju.se External link, opens in new window.
Web: ju.se/en/it-helpdesk External link, opens in new window.
Policy for the management of personal information within the scope of the Identity Provider (IdP) as determined by Jönköping University
The Identity Provider performs authentication at the request of a service which Jönköping University recognizes, either via metadata provided by the SWAMID federation or because the service provider and Jönköping University has a specific agreement. Depending upon the type of service involved, the purpose of the service and what relationship the service has to the Jönköping University’s IdP, one or more pieces of personal data are transferred from Jönköping University’s catalogue and authorization system to the requesting service. This procedure follows the intent of the Swedish Personal Data Act (PUL).
All web services have access to a unique identifier which makes it possible for the user to save preferences after logging in such that the user has access to the same preferences during a subsequent login. This unique identifier is unique to that specific service and cannot be shared or traced between different web services.
Services that are categorized in SWAMID’s metadata with entity categories receive attributes in accordance with SWAMID’s recommendations and where applicable access to the user’s Swedish personal identity number or Swedish higher education interim personal identity number for foreigners, see below.
Services whose primary purpose is for the benefit of research and education have access to approximately the same personal data which are automatically sent with an everyday email, that being name, email address, user identity, if the user is a student or employee (or similar active role) and that the user has an account at Jönköping University. Registered services that via GÉANT Data Protection Code of Conduct2 External link, opens in new window. adhere to the European Union’s data
protections directives, in Sweden the Personal Data Act, get access to the same information. Registered services that via USA adhere to the Safe Harbor data protections directives from (Department of Commerce - DoC), get access to the same information. (The European Commission has ruled that the safe harbor rules are an adequate level of protection in accordance with EU Data Protection Directive)
Services whose purpose is for students to process admissions, course registrations, examination sign-up, degree applications, internships, grant applications, self-service account administration and for employees self-service for Jönköping University’s HR-system have access to the user’s Swedish personal identity number or Swedish higher education interim personal identity number for foreigners. For services outside the scope of SWAMIDs entity
categories, local services and where a service requires a user’s personal identity number in order to fulfill its purpose, the PUL manager have approved access to such personal data which follows the intent of the Swedish Personal Data Act (PUL).