saml-dev message

Subject: Re: [saml-dev] the value of AuthnInstant

From: "Tom Scavo" <trscavo@gmail.com>
To: "Cahill, Conor P" <conor.p.cahill@intel.com>
Date: Mon, 11 Feb 2008 16:57:18 -0500

That makes total sense, Conor.  Your words could be considered errata, I think.

Tom

On Feb 11, 2008 4:20 PM, Cahill, Conor P <conor.p.cahill@intel.com> wrote:
> Yes, a cookie could be considered
> some form of authentication.  However, if the IdP says in the AC that
> the
> user presented username/password, then the AuthnInstant has to be when
> that
> took place, not when some session cookie was presented to the IdP.
>
> So, yes, if I have an AuthnContext that says "Got a cookie", then the
> AuthnInstant can match the IssueInstant.
>
> Conor

Follow-Ups:
- RE: [saml-dev] the value of AuthnInstant
  - From: "Cahill, Conor P" <conor.p.cahill@intel.com>

References:
- Re: [saml-dev] the value of AuthnInstant
  - From: "Tom Scavo" <trscavo@gmail.com>
- RE: [saml-dev] the value of AuthnInstant
  - From: "Ari Kermaier" <ari.kermaier@oracle.com>
- Re: [saml-dev] the value of AuthnInstant
  - From: "Tom Scavo" <trscavo@gmail.com>
- Re: [saml-dev] the value of AuthnInstant
  - From: "Tom Scavo" <trscavo@gmail.com>
- RE: [saml-dev] the value of AuthnInstant
  - From: "Cahill, Conor P" <conor.p.cahill@intel.com>
- RE: [saml-dev] the value of AuthnInstant
  - From: "Cahill, Conor P" <conor.p.cahill@intel.com>