OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [saml-dev] SAML, trust and WS.

Title: RE: [saml-dev] SAML, trust and WS.

Hi when you say reasobly clean in SAML 2.0,
do you mean Liberty based on SAML 2.0 ?

I didn't see a solution using a pure SAML 2.0 approach.
I'm kind of interested in finding some SAML specific approach (for semplicity and to build a prove of concept)
How would you approach this problem ? Any idea ?


-----Original Message-----
From: Scott Cantor [mailto:cantor.2@osu.edu]
Sent: Thu 08/12/2005 17:19
To: will@javafreelancer.net; Sarno, Giuseppe [MOP:GM15:EXCH]; saml-dev@lists.oasis-open.org
Subject: RE: [saml-dev] SAML, trust and WS.

> they call their implementation "saml-based" but it is not strictly
> saml-conformant. now that i have been exposed to their
> non-conformant approach, i am fanatically interested in
> understanding the conformant way to implement a saml solution
> because i do not want my understanding of the specs shaped solely
> by "the wrong way to do it" (if you know what i mean).

Well, conformant to what? I think, outside of Liberty, the best you can do
is just not violate the SAML core spec wrt to the token contents and how
they get used. So if there are concerns about whether something is "legal"
in terms of SAML core, I think that's well within our ability to answer.

I think that the SAML SSO->SAML w/ WSS kind of stuff is hard to do elegantly
without SAML 2.0, for whatever that's worth. It can look reasonably clean in

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]