OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [saml-dev] Consent in the RequestAbstractType.

Title: Consent in the RequestAbstractType.
So for example
the SP could provide a portal/form where the user has to explicitly to tick a box before the SP can initiate an AuthRequest with an IDP.
Looking at the identifiers,
I guess implicit is the case when there is not a tick box but may be a Warning message for example, but I don't quite understand the difference between explicit and obtained, aren't they the same ?
Also I guess from a SAML point of view (a part the fact that a Request SHOULD be Signed in case there is a consent attribute) the behavior at the IDP is out of scope.

From: Cahill, Conor P [mailto:conor.p.cahill@intel.com]
Sent: 19 September 2006 15:44
To: Sarno, Giuseppe (MOP:GM15); saml-dev@lists.oasis-open.org
Subject: RE: [saml-dev] Consent in the RequestAbstractType.

It is a flag to indicate that the Requestor is actively asserting that they have obainted the consent of the user to make this request. 
The use case is primarily around privacy and potential ramifications on an Requestor who performs such an operation without having collected consent (their argument about "not knowing they needed consent" has less strength when they have a flag this flag set).

From: Giuseppe Sarno [mailto:gsarno@nortel.com]
Sent: Tuesday, September 19, 2006 10:32 AM
To: saml-dev@lists.oasis-open.org
Subject: [saml-dev] Consent in the RequestAbstractType.

Can anyone please help me understanding the attribute "Consent" in an abstractRequest ?
Are there any use cases ?


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]