OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [saml-dev] preserving query parameters in AssertionConsumerServiceURL

Mihaylov, Dimitar wrote on 2009-04-08:
> I would interpret the part "signing the enclosing <AuthnRequest> message
> is another" that if the AuthnRequest is signed no comparision with the
> metadata is necessary? Is this correct? If yes then I do not see any
> problem putting any URL as value - containing parameters, etc. What do
> you think?

I never thought about it, but either way, it's a pointless thing to do since
you have RelayState. It's just asking for interop problems. Even if you sign
the request that doesn't mean the IdP is going to verify it. You don't
control that process.

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]