[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [saml-dev] preserving query parameters in AssertionConsumerServiceURL
Mihaylov, Dimitar wrote on 2009-04-08: > I would interpret the part "signing the enclosing <AuthnRequest> message > is another" that if the AuthnRequest is signed no comparision with the > metadata is necessary? Is this correct? If yes then I do not see any > problem putting any URL as value - containing parameters, etc. What do > you think? I never thought about it, but either way, it's a pointless thing to do since you have RelayState. It's just asking for interop problems. Even if you sign the request that doesn't mean the IdP is going to verify it. You don't control that process. -- Scott
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]