On 4/7/14, 1:38 PM, "Vasu Y" <
vyal2k@yahoo.com> wrote:
>What is the intent of some the fields like Destination, InResponseTo,
>Issuer, IssueInstant, Version being present in both the SAML
>authentication Response as well as in the contained Assertion (like
>Receipient, InResponseTo in bearer SubjectConfirmationData, Issuer in
>both the Response and Assertion)?
So that signing the assertion is sufficient to secure the
profile.
>Will the values of these common fields be always same (between Response &
>Assertion) or can they be different sometimes? If for instance, what
>could be a likely case, when the value of Destination in Response and the
>value of Recipient in SubjectConfirmationData
> be different?
That depends on the profile.
-- Scott