[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] JIRA SECURITY-6 PE: Conflict with core in SSOprofile on returning error Responses to SP
I guess that's true, no easy way out. So we either elaborate on the error conditions side, or on what "acceptable location..." means. ::Ari > -----Original Message----- > From: Scott Cantor [mailto:cantor.2@osu.edu] > Sent: Tuesday, April 20, 2010 11:59 AM > To: ARI KERMAIER; OASIS SSTC > Subject: RE: [security-services] JIRA SECURITY-6 PE: Conflict with core > in SSO profile on returning error Responses to SP > > > Why mention a specific error condition at all? How about just: > > > > "Identity Provider implementations MUST/SHOULD support the issuance > of > > <saml2p:Response> messages (with appropriate status codes) in the > event of > > an error condition, provided that the user agent remains available > and an > > acceptable location to which to deliver the response is available." > > I was concerned that "error condition" would be so broad as to > reintroduce > the same set of questions about whether to respond, but if you think > the > rest of the text is clear enough about that, I'm ok with it. > > -- Scott > > > > --------------------------------------------------------------------- > To unsubscribe from this mail list, you must leave the OASIS TC that > generates this mail. Follow this link to all your TCs in OASIS at: > https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php >
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]