[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [security-services] Proposed Enhancement for Dynamic Attribute Queries
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 03/28/2012 08:40 PM, David Chadwick wrote: > Hi Leif > > if I understand you correctly, you propose to invent a set of > virtual SPs according to the different combinations of attributes > that could be requested by any SP, and then when an actual SP wants > a particular set of attributes, the SAML message that is sent tells > the IDP that it is from the virtual SP corresponding to the set of > attributes that are required. Is that correct? If so, it sounds > like a rather convoluted hack > I'm saying that is what happens today. It isn't much of a hack. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk9zihgACgkQ8Jx8FtbMZndY/QCdELKT3E6fYL45p9kidpHhPpkj vqgAnjOXpex1AnvZkOPkuwnyincIsaCU =lgs5 -----END PGP SIGNATURE-----
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]