Imagen Term Glossary đź“°

Imagen specific terminology will be listed here fr reference

Conditional operators

An operator specifies the type of operation to be applied to your condition, for example,

+ the value is equal to

< the value is less than

> the value is greater than

Media ID

The Media Object ID is commonly referred to as Media ID

Media Object

Any piece of media - Images, Videos, Audio, and Documents - will be contained within a Media Object. This will contain all renditions. as well as the original media (Media Elements

 

Media Elements

Contained within a media object, a media element represents the original file in storage - unless otherwise deleted by a retention policy in specific and rare use-cases

Records

Each Record will have a unique recordID. This can be found in the URL (below) or by editing a record

SP/Service Provider

The ImagenWeb instance e.g. PremierLeague Archive, ImagenGo providing the “service”

IDP/Identity Provider

The service providing the user’sidentity e.g. Microsoft, Google,Bournemouth university●

Organisation

An Imagen organisation stores the IDP’sconfiguration details. When auser initiates the login process, they first choose their organisation, which will in turnredirect them to the IDP’s login form

Departments

Departments are Imagen Roles that existbeneath an Imagen Organisation (one organisation to many departments). Specific SSO attributes can bemapped to a Department, and Departments can be associated with Imagen Groups,making it possible to configure ACLs per Department

Attributes

When a user is sent from their IDP backto ImagenWeb, we’ll be able to useattributes released by their IDP that uniquely identify that user. The following attributesare the most important:○urn:oid:1.3.6.1.4.1.5923.1.1.1.10(eduPersonTargetedID):This must be aunique ID that very rarely changes (i.e. this is a user ID). If it ever changes, seethe User account merging point below. This is arequiredattribute.○urn:oid:0.9.2342.19200300.100.1.3(mail): The user’semail address. This isused to pre-populate the user’s registration form when theyfirstvisit ImagenWeb.The user can opt to use a different email address if so desired.●

User account merging

If the user’s eduPersonTargetedIDever changes, ImagenWebwill see them as a new user and treat them accordingly. If a user wishes to regainaccess to their previous account/use their previous email address, they will need tomerge their accounts. The previous email address will be sent a message containing alink that initiates the merge and transfers the previous user’s content (collections, etc)before ultimately deleting the previous account

WAYFless URLs

Shareable URLs that will sign a userinto a specific IDP beforeredirecting to the target, for example:https://imagenweb/start-session?entityID=YOUR_IdP&target=https://imagenwebwhereYOUR_IdP is the Entity ID of an IDP.â—Ź
Entity ID: The SP and IDP have an Entity ID. The SP’sentity ID can be found on thehttps://imagenweb/ssoserviceprovider/adminpage, whilsteach IDP’s Entity ID can befound on its respective Organisation admin page

Federations

A federation is a collection of IDPs.If you add a Federation toImagenWeb, it’s a quick way of trusting dozens of IDPs at the same time. In Imagen’scase, we subscribed to a Federation containing dozens of UK universities, which each have their own ways of authenticating users. An organisation can be created which is linked to an IDP derived from a Federation