OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [saml-dev] SAML, trust and WS.

> they call their implementation "saml-based" but it is not strictly 
> saml-conformant. now that i have been exposed to their 
> non-conformant approach, i am fanatically interested in 
> understanding the conformant way to implement a saml solution 
> because i do not want my understanding of the specs shaped solely 
> by "the wrong way to do it" (if you know what i mean).

Well, conformant to what? I think, outside of Liberty, the best you can do
is just not violate the SAML core spec wrt to the token contents and how
they get used. So if there are concerns about whether something is "legal"
in terms of SAML core, I think that's well within our ability to answer.

I think that the SAML SSO->SAML w/ WSS kind of stuff is hard to do elegantly
without SAML 2.0, for whatever that's worth. It can look reasonably clean in

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]