OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [saml-dev] Is my English description of an Authentication Assertion correct?

 

> Is my English description an accurate interpretation of the 
> XML version?  /Roger

Pretty much, although I would probably have included other fields 
in the assertion (e.g. Subject Confirmation, Audience Restriction,
etc.).

One minor nit -- the assertion should not be considered
valid *at* 1:00PM on May 8, 2006 or anytime there after.  The 
english description makes it seem that 1:00 PM would be OK,
but it isn't.

Conor
> 
> ----------------------------------------------------
> ENGLISH DESCRIPTION OF THE ASSERTION
> ----------------------------------------------------
> Identity Provider Assertion:
> 
> This assertion is hereby dated May 8, 2006 at 12:00 pm 
> Greenwich Mean Time. 
> 
> I, http://www.AirlineInc.com, assert that I authenticated 
> this Subject (which I identify by email address): j.doe@acompany.com
> 
> The Subject was authenticated on May 1, 2006 at 9:32 am 
> Greenwich Mean Time through the presentation of a password 
> over a protected session.
> 
> This assertion shall not be considered valid before 
>     May 8, 2006 at 12:00 pm Greenwich Mean Time or after
>     May 8, 2006 at 1:00 pm Greenwich Mean Time
> 
> ----------------------------------------------------
> XML VERSION OF THE ASSERTION
> ----------------------------------------------------
> <Assertion xmlns="urn:oasis:names:tc:SAML:2.0:assertion"
>            Version="2.0"
>            IssueInstant="2006-05-08T12:00:00Z"
>            ID="abe567de6">
> 
>     <Issuer>
>         http://www.AirlineInc.com
>     </Issuer>
> 
>     <Subject>
>         <NameID
> Format="urn:oasis:names:tc:1.1:nameid-format:emailAddress">
>             j.doe@acompany.com
>         </NameID>
>     </Subject>
> 
>     <Conditions NotBefore="2006-05-08T12:00:00Z"
>                 NotOnOrAfter="2006-05-08T13:00:00Z">
>     </Conditions>
> 
>     <AuthnStatement AuthnInstant="2006-05-01T09:32:00Z">
>         <AuthnContext>
>             <AuthnContextClassRef>
>  
> urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
>             </AuthnContextClassRef>
>         </AuthnContext>
>     </AuthnStatement>
> 
> </Assertion>
> 
> ---------------------------------------------------------------------
> This publicly archived list supports open discussion on 
> implementing the SAML OASIS Standard. To minimize spam in the 
> archives, you must subscribe before posting.
> 
> [Un]Subscribe/change address: http://www.oasis-open.org/mlmanage/
> Alternately, using email: list-[un]subscribe@lists.oasis-open.org
> List archives: http://lists.oasis-open.org/archives/saml-dev/
> Committee homepage: http://www.oasis-open.org/committees/security/
> List Guidelines: http://www.oasis-open.org/maillists/guidelines.php
> Join OASIS: http://www.oasis-open.org/join/
>

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]