OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Subject: RE: [security-services] Live ISSUEs from Eve

Eve,

couple of responses from my end: 

ELM-11. Not discussed but Prateek commented on it; is bindings fixed?

[PM]
The issue here is extra tests in conformance. We never require
SAML artifacts to be returned over the SOAP binding. The correct test
is to query for an assertion based on artifact or assertion ID. This
query structure is completely independent of the assertion returned.

The following tests should be removed from conformance: 1-2, 1-6, 1-10

The following test should be generalized to return an arbitrary assertion
thru query against artifact/assertion id: 1-3.

ELM-12. Not discussed; should be put on the issues list and deferred.

[PM] There is no issue here. I gave some discussion and motivation for
the specification text. I do not see any issue.




> ---------------------------------
> ELM-11. Test cases for artifact handling
> 
> According to Test Case 1-2, 1-3, 1-6, 1-10 in the conformance spec 11,
a 
> SAML Request is sent over SOAP protocol binding to a responder. The 
> responder should be able to return an assertion artifact in the 
> Response. The requester then request the assertion using the artifact.
> 
> The key here is an artifact is requested for ANY type of assertion AND

>  over SOAP protocol binding. I don't see these requirement anywhere 
> else, not even in Table 1: Protocol Bindings and Profiles for SAML 
> Assertions. Are they intended or should be removed?
> 
> ---------------------------------
> ELM-12. Protocol for artifact- and ID-based queries
> 
> See:
> 
> 
>
http://lists.oasis-open.org/archives/security-services/200202/msg00204.h
tml
> 
> Has this been decided/fixed?
> 
> ---------------------------------
> ELM-13. InResponseTo when the request is missing/malformed
> 
> See:
> 
> 
>
http://lists.oasis-open.org/archives/security-services/200203/msg00001.h
tml
> 
> Has this been decided/fixed?
> 


-- 
Eve Maler                                    +1 781 442 3190
Sun Microsystems XML Technology Center   eve.maler @ sun.com


----------------------------------------------------------------
To subscribe or unsubscribe from this elist use the subscription
manager: <http://lists.oasis-open.org/ob/adm.pl>

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]

Powered by eList eXpress LLC