[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [saml-dev] SAML, trust and WS.
> they call their implementation "saml-based" but it is not strictly > saml-conformant. now that i have been exposed to their > non-conformant approach, i am fanatically interested in > understanding the conformant way to implement a saml solution > because i do not want my understanding of the specs shaped solely > by "the wrong way to do it" (if you know what i mean). Well, conformant to what? I think, outside of Liberty, the best you can do is just not violate the SAML core spec wrt to the token contents and how they get used. So if there are concerns about whether something is "legal" in terms of SAML core, I think that's well within our ability to answer. I think that the SAML SSO->SAML w/ WSS kind of stuff is hard to do elegantly without SAML 2.0, for whatever that's worth. It can look reasonably clean in 2.0. -- Scott
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]