OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]


Subject: Re: saml request-response and subject



I guess my feeling about this is that we should leave this issue to
implementors.


--bob

Bob Blakley (email: blakley@us.tivoli.com   phone: +1 512 436 1564)
Chief Scientist, Security, Tivoli Systems, Inc.


Simon Godik <sgodik@crosslogix.com> on 07/30/2001 07:56:24 PM

To:   "'pmishra@netegrity.com'" <pmishra@netegrity.com>
cc:   "'security-services@lists.oasis-open.org'"
      <security-services@lists.oasis-open.org>
Subject:  saml request-response and subject





In draft-sstc-protocol-discussion-01.doc saml-query-type and
saml-response-type are defined.

Do we have any requirement on subject element type correlation between
query and response or is it left to the
issuing party?

For example, if saml-attribute-query refers to subject by Authenticator
does it mean that AttributeAssertion in the
response also have to refer to the subject by Authenticator, or can it use
something else like NameIdentifier?

Simon Godik






[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]


Powered by eList eXpress LLC