[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [security-services] Rejecting Saml Requests (SOAP Binding0
Scott, sorry for the confusion. I did mean soap initially. Keeping with soap, are you saying that
A) the responder should send back a saml msg with and invalid (Requester) top level status code?
And if so:
B) does the spec say, in your opinion, you must do this vs. just returning a soap fault?
Tom.
> -----Original Message-----
> From: Scott Cantor [mailto:cantor.2@osu.edu]
> Sent: Wednesday, June 22, 2005 7:07 PM
> To: 'Thomas Wisniewski'; security-services@lists.oasis-open.org
> Subject: RE: [security-services] Rejecting Saml Requests
> (SOAP Binding0
>
>
> > Scott, take the first item below -- so you do not even know
> > the issuer (for an http binding, you wouldn't send a saml
> > response, since you wouldn't know where to send it to --
> > since you don't know the issuer at all).
>
> Agreed, but you were talking SOAP faults, so I assumed you meant SOAP.
>
> -- Scott
>
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]