OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: SAML 2.0 SPProvidedID

Hi @ all,

 

Is the SPProvidedID Attribute usable as a kind of foreign key at the IdP? I thought about the following:

  1. Establish Persistent Federation between IdP and SP via Browser SSO Profile (User has Account at both parties)
  2. the SP immediately issues a ManageNameIDRequest to the IdP containing its primary key for the respective user as SPProvidedID
  3. in all following requests to the IdP, the SP uses the SPProvidedID (provided as NameID attribute; omitting the IdP’s NameID String) when referring to the Subject and thus needn’t hold the Subject’s NameID provided by the IdP

Is this possible or does the IdP need the NameID to idenitify the subject?

 

Thanks for any help!

Lars

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]