[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] HTTP GET in Redirect Binding
Understood. I wondered if the GET applies to the sending of the message to the browser via a redirect, which is of course meaningless. Thanks, Jahan > -----Original Message----- > From: Scott Cantor [mailto:cantor.2@osu.edu] > Sent: Tuesday, September 20, 2005 2:36 PM > To: jmoreh@sigaba.com; 'Saml' > Subject: RE: [security-services] HTTP GET in Redirect Binding > > > SAMLBindings lines 559-560 state: Messages are encoded for use with > > this binding using a URL encoding technique, and > transmitted using the > > HTTP GET method. > > > > To what exchange does the "GET" method refer? > > Not sure what you mean. The HTTP Redirect binding is > explicitly about sending the SAML message in the query > string. The message gets sent when you pass it inside a > redirect to the browser and then it sends it via GET message > to the peer site. Bogus in HTTP terms, since GETs are not > supposed to "do things", but that's web SSO... > > -- Scott > > > --------------------------------------------------------------------- > To unsubscribe from this mail list, you must leave the OASIS > TC that generates this mail. You may a link to this group > and all your TCs in OASIS > at: > https://www.oasis-open.org/apps/org/workgroup/portal/my_workgr > oups.php > >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]