OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] Comment on sstc-saml-glossary-2.0 (also closes AI #0114)

> From a use-case point of view, I think this capability (to request that  
>   a new federation not be created if one doesn't already exist) is most  
> useful in combination with passive authentication requests

I'd also note, BTW, that you *still* don't need a flag for this. If I set
IsPassive and ask for a persistent ID back, an IdP is free to refuse and
return an error telling me that he needed to prompt the principal for
consent because no identifier exists yet. At which point the SP can decide
what it wants to do.

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]