OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [security-services] question on IdP Discovery - SAML IOP event

Kyle Meadors wrote on 2009-07-23:
> Basically needing the common domain to establish their local SSO session.
> Some others in the test group feel this is not normative and no one else
> needs this domain change for IdP Discovery. Would this be permissible or
> unnecessary? Thanks.

Seems counter to the point of the common domain to me, but I'm no expert on
that method. It's certainly not assumed by the profile, but it's not obvious
to me that it's precluded either.

Since the whole idea is that the DNS entries point to systems controlled by
the federation endpoints, seems like it's pretty open to interpretation how
much of the software has to be hosted at those endpoints.

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]