OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Roles for SAML 2.0 Metadata

> I very much agree with Anthony's statement that 'various profiles should
> define the "roles" and not the metadata
> specification'. Indeed, the metadata specification is not seeking to
> roles, but rather "identify" existing roles, taken from existing profiles,
> and then determine the metadata that needs to be defined for these roles.

I think it's reasonable to characterize the work item on metadata that way,
but when the editing process takes place, I think a more effective way of
partitioning the material is what I (and I think Tony) suggested; a section
in core for the containing elements and HTTP-based resolution work, and the
rest within B&P to define the actual role descriptors as well as referencing
them within the bindings and profiles.

Probably added to core would also be the basic outline of *how* you define
descriptors (a base element or model group for example to use as a

(And yes, I'm willing to help do all that.)

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]