OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [saml-dev] Any 3 leg profile?

On Tue, Feb 26, 2013 at 5:51 PM, Cantor, Scott <cantor.2@osu.edu> wrote:
> On 2/26/13 4:49 PM, "Will Hartung" <willh@mirthcorp.com> wrote:
>>Is there any popular 3 leg profile, or is the SAML Bearer Assertion
>>Profile for OAuth the closest thing out there right now?
> If you mean are there ways of doing things like this with mostly SAML
> alone, yes, but I certainly wouldn't term them "popular", no. Assuming I
> know what you mean by it anyway.

By 3 leg I mean client authenticates with IdP, gets Token, client then
makes request to SP with Token, that the SP verifies/accepts Token and
delivers the service.

Is there another term of art for this?

We're looking for "more SAML than not" solution, since we're not
really motivated to actually use OAuth for this (which the SAML Bearer
Assertion Profile is). We can always hand craft something, but if
there's already been work that we can adopt, that would be better.

Thanks again, Scott.


Will Hartung

CONFIDENTIALITY NOTICE: The information contained in this electronic 
transmission may be confidential. If you are not an intended recipient, be 
aware that any disclosure, copying, distribution or use of the information 
contained in this transmission is prohibited and may be unlawful. If you 
have received this transmission in error, please notify us by email reply 
and then erase it from your computer system.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]