[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [saml-dev] Errors with HTTP redirect Binding
On 6/14/07, valerie.bauche@bull.net <valerie.bauche@bull.net> wrote: > > It doesn't matter if the receiver is an SP or an Idp. The problem is that > with Http Redirect Binding we don't know who is the sender of the request, > we only know who is the user agent. This is a side issue, but an IdP can't use HTTP Redirect to bind a response since the latter is too big. > So we need to analyse the SAML request > to discover the sender and establish which URL to use to send the SAML > response. If the identity found in the SAML request is unknown for the > receiver, it has no way to know which URL to use to send the SAML Response > to. So, a SAML response with appropriate error code has no utility if with > don't know where to send it ! I guess the binding is mostly irrelevant to your question, but yes, that's a problem and I don't know how to handle it, sorry. Maybe someone else has an idea. Tom
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]