Subject: Proposed mandatory bindings for web SSO
Mandatory to implement bindings for Web SSO
The terminology used is that of IdP, SP, AuthNRequest and AuthNResponse.
An IdP responds
to AuthNRequests originating from an SP. An SP originates AuthNRequests to an IdP and accepts
responses back from the IdP.
component of a binding is written using function notation, BindingName(Message).
(1) At the IdP, the following implementations are mandatory:
Responds to: HTTP-redirect(AuthNRequest)
Responds with: HTTP POST(AuthNResponse), HTTP Artifact(AuthNResponse)
(2) At the SP, the following implementations are mandatory:
Accepts: HTTP POST(AuthNResponse), HTTP Artifact(AuthNResponse)