security-services message

Subject: RE: [security-services] JIRA SECURITY-6 PE: Conflict with core in SSO profile on returning error Responses to SP

From: "Scott Cantor" <cantor.2@osu.edu>
To: "'ARI KERMAIER'" <ARI.KERMAIER@oracle.com>, "'OASIS SSTC'" <security-services@lists.oasis-open.org>
Date: Tue, 20 Apr 2010 11:58:57 -0400

> Why mention a specific error condition at all? How about just:
> 
> "Identity Provider implementations MUST/SHOULD support the issuance of
> <saml2p:Response> messages (with appropriate status codes) in the event of
> an error condition, provided that the user agent remains available and an
> acceptable location to which to deliver the response is available."

I was concerned that "error condition" would be so broad as to reintroduce
the same set of questions about whether to respond, but if you think the
rest of the text is clear enough about that, I'm ok with it.

-- Scott

Follow-Ups:
- RE: [security-services] JIRA SECURITY-6 PE: Conflict with core in SSOprofile on returning error Responses to SP
  - From: ARI KERMAIER <ARI.KERMAIER@oracle.com>

References:
- RE: [security-services] JIRA SECURITY-6 PE: Conflict with core in SSOprofile on returning error Responses to SP
  - From: ARI KERMAIER <ARI.KERMAIER@oracle.com>