[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] SAML 2.0 tech overview - initial diagrams
Scott, that was also one of my queries in producing the diagrams - it wasn't clear (at least after a few readings) - whether Response/Artifacts should/could go via the IdP ITS. Below implies that you believe the SSO service should send the response/artifact (via the appropriate binding) directly to the SP? I must admit the SSO->ITS step seemed unnecessary. John > -----Original Message----- > From: Scott Cantor [mailto:email@example.com] > Sent: 30 June 2004 18:15 > To: 'John Hughes'; 'oasis sstc' > Subject: RE: [security-services] SAML 2.0 tech overview - initial > diagrams > > > > Would appreciate that these are checked - and then I can > > start producing the text. > > A quick glance looks good, my only concern might be the notion of > "redirecting with <Response> from the SSO service to the ITS at the IdP. > It's not clear from the diagram that this step isn't normatively in the > profile, and it definitely isn't a use of a SAML Redirect binding to move > the response. > > -- Scott > > > To unsubscribe from this mailing list (and be removed from the > roster of the OASIS TC), go to > http://www.oasis-open.org/apps/org/workgroup/security-services/mem bers/leave_workgroup.php.