OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

imi message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [imi] Issue regarding AppliesTo content

Thanks for writing this up, Scott.

A SPN is a Service Principal Name.  For instance, see these pages for discussion of SPNs:
http://alt.pluralsight.com/wiki/default.aspx/Keith.GuideBook/WhatIsAServicePrincipalNameSPN.html
http://msdn.microsoft.com/en-us/library/ms677949(VS.85).aspx

Scott, as you pointed out, your proposal is actually an instance of a more general facility that would let a Relying Party provide a WS-SecurityPolicy document via an object tag.  I'm sympathetic to this possibility (I know that Microsoft and others have talked about implementing this at some point), but I know of no implementations.  Despite the capability being well-motivated, I'm reluctant to introduce a new feature into this standard until we have experience from existing practice to draw upon.

Just because we don't do this in V1 of the standard doesn't mean that it won't happen.  We know, for instance, that this TC plans to take on additional work after finishing the IMI V1 spec, such as the SAML 2.0 token profile.  I suspect that other new pieces of technical work will also be undertaken by the TC.  For instance, I know that the Higgins project are busy building some cool new facilities, some of which standardization could make sense for once they're ready.

Without existing practice to learn lessons from, I'd rather we wait to do this in a future work item.  The TC should definitely track this as a possible future work item however.

What do others think?

				-- Mike

-----Original Message-----
From: Scott Cantor [mailto:cantor.2@osu.edu] 
Sent: Friday, February 06, 2009 11:49 AM
To: 'Anthony Nadalin'
Cc: imi@lists.oasis-open.org
Subject: RE: [imi] Issue regarding AppliesTo content

Anthony Nadalin wrote on 2009-02-06:
> So I think that this is already covered in the Web Services Addressing
> Endpoint References and Identity specification as there are extensions
there
> to add SPN

I don't know what SPN means, but unless those extensions include the OBJECT
tag properties, it can't cover it. I'm assume no metadata document at the
RP, just the HTML markup.

-- Scott



---------------------------------------------------------------------
To unsubscribe from this mail list, you must leave the OASIS TC that
generates this mail.  Follow this link to all your TCs in OASIS at:
https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]