OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Re: [saml-dev] SSO multiple SPs


Please reply to the list, not me personally.

On Mar 13, 2014, at 12:10 PM, Security Developer <security.developer22@gmail.com> wrote:

> Thanks for the clarification. Please bear with me, I have couple of more questions. 
> 
> If IDP choose to follow the path of returning SAML response containing SAML assertion silently (without user interaction) then
> 
> - Will IDP return the same SAML assertion to second SP that was returned to first SP? If yes how would IDP know about it?

No, it will not be the same SAML Assertion. The assertion, among other things, contains information specific to the SP receiving it. So it will never be the "same" assertion. The IdP will construct the proper assertion for that SP. 

> - How does Second SP know about the first SP?
> 


The SP's will not know about each other via SAML.

Paul

Paul Hethmon
Chief Software Architect
paul.hethmon@clareitysecurity.com




[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]