OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services-comment message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Public Comment

Comment from: rfought@psislidell.com

Name:Rich Fought
Title:Senior Security Software Engineer
Organization: Planning Systems Incorporated
Regarding Specification: SAML 2.0 
The SAML 2.0 protocol schema contains a local reference to the assertion schema.  Use of full URLs  might help prevent problems.  Currently the XACML-SAML extension schemas available on the XACML TC site contain references to older "sstc-" versions of these schemas.  The older SAML protocol schema located at http://www.oasis-open.org/committees/download.php/11026/sstc-saml-schema-protocol-2.0.xsd
imports an assertion schema in the same directory that is apparently corrupted, as it contains the same contents as the protocol schema.  Thus the whole chain fails validation.

Having full URLs for imported schemas would prevent problems like these where the schemas are not in the same directory.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]