[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: Comments on draft-sstc-solution-profile-kerberos-01.pdf
Scott, I understand the notion of the bearer assertion - however not clear to me how we would request/generate the bearer assertion (at least in the uses case the proposed describes) John > -----Original Message----- > From: Scott Cantor [mailto:cantor.2@osu.edu] > Sent: 13 January 2004 17:05 > To: 'John Hughes'; 'SAML' > Subject: RE: Comments on draft-sstc-solution-profile-kerberos-01.pdf > > > > In any case the proposal also suggests that the SAML protocol > is extended > so > > that distinct messages are supported to request an Assertion - or an > > Artifact reference > > Yes, and to the extent that I'm "objecting", which is a little strong, > that's what I'm objecting to. We wouldn't be likely to do this in the case > of the browser-based AuthnRequest, so I don't see how it applies here > either. I'm trying to suggest that they are the same use case > leading to the > same result, a bearer assertion. Just different protocol bindings > for SAML. > > -- Scott
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]