[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [saml-dev] Question concerning linking of principals
> Or are you saying that there's > only one principal B in Principal A's attributes? That's correct. > In any case, this isn't an easy problem when a) you want to > support principals that may be asserted by different identity > providers (e.g. > Principal B's IDP may not be the same as Principal A's), b) > you want to protect the privacy of Principal B (so the > nameIDs at each relying party can't be the same), c) you want > to support a situation where principal A may have many > principal Bs that they may want to interact with and d) you > want to invoke the request for Principal B's attributes in an > invocation context where Principal B is *not* actively > participating (e.g. RP in the context of Principal A visiting > their site wants to get to Principal B's attributes/resources). Good points. I'll take a look at the People Service. Thanks very much, josh. JANET(UK) is a trading name of The JNT Association, a company limited by guarantee which is registered in England under No. 2881024 and whose Registered Office is at Lumen House, Library Avenue, Harwell Science and Innovation Campus, Didcot, Oxfordshire. OX11 0SG
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]