[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Authentication on IDP.
Hi,
I'm trying to understand how the IDP knows what credential to apply in case of authentication challenge in a SSO scenario.
Pricipal seen as USER_A on SPA and USER_B on SPB and USER_IDP on IDP
SPA initiated:
SPA redirect (for example) authrequest to IDP indicating that the AuthContext_A AuthContext should be applied to the user.
Question 1:
in case Context_A = userId/password, what user Id should be used ?
The one known at the IDP (USER_IDP) (which means we can only use the user identifier at the IDP for that circle of trust)
or (in case the ID has the knowledge) could actually use the USER_A as known at SPA.
SPB Initiated
Quetion 2:
in case of Context_B = again where the IDP gets the certificate from ?
Sorry again for the many questions I'm straggling going through the specs and get those sort of question answered.
Giuseppe.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]