security-services message

Subject: Re: [security-services] Groups - sstc-saml-holder-of-key-browser-sso-draft-03.odt (sstc-saml-holder-of-key-browser-sso-draft-03.odt) uploaded

From: "Tom Scavo" <trscavo@gmail.com>
To: cantor.2@osu.edu
Date: Sat, 5 Jul 2008 09:27:49 -0400

On Tue, Jul 1, 2008 at 10:00 PM, Scott Cantor <cantor.2@osu.edu> wrote:
>
> There are two halves to the profile you're talking about, and the IdP-first
> case is *similar* (but not the same) as one of those halves for delivering
> an assertion to an HTTP server. That half leaves out the part where you
> figure out what the site actually wants and get the token in the first
> place. That end to end flow is what causes the problems, and this profile is
> end to end right now.
>
> Having written both types of profiles, I know that it's not a subset, and I
> also know that the first half of such a profile already exists and is
> perfectly usable, even if it's not in OASIS.

Scott, can you provide pointers to the profile (or profiles) you're
referring to?

Thanks,
Tom

Follow-Ups:
- Re: [security-services] Groups - sstc-saml-holder-of-key-browser-sso-draft-03.odt
  - From: Scott Cantor <cantor.2@osu.edu>

References:
- Re: [security-services] Groups - sstc-saml-holder-of-key-browser-sso-draft-03.odt (sstc-saml-holder-of-key-browser-sso-draft-03.odt) uploaded
  - From: "Tom Scavo" <trscavo@gmail.com>
- Re: [security-services] Groups - sstc-saml-holder-of-key-browser-sso-draft-03.odt (sstc-saml-holder-of-key-browser-sso-draft-03.odt) uploaded
  - From: "Tom Scavo" <trscavo@gmail.com>