[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [security-services] SAML Rev Idea: General Session Index
RIght, you'd take the SessionIndex from the AuthnStatement and send it back in subsequent messages (e.g., attribute queries) to let the IdP know that the SP thinks the request it's making is correlated to the session established by that AuthnStatement. On Tue, Jan 17, 2012 at 10:16, Cantor, Scott <cantor.2@osu.edu> wrote: > On 1/17/12 10:08 AM, "Chad La Joie" <lajoie@itumi.biz> wrote: > >>Fair enough. Is this something people think would be a useful >>extension? Obviously the Shib project has seen a couple places where >>it would help us out some. Does anyone else care? > > We have a half dozen or more existing specs out there nobody else > implemented, so our (meaning the project's) threshold has been that if we > think it's worth implementing, we've published it. > > If I understand your proposal, it's to use the existing SessionIndex > construct in the AuthnStatement, so as an SP implementer, yes, it's pretty > trivial. > > -- Scott > -- Chad La Joie www.itumi.biz trusted identities, delivered
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]