[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [security-services] Groups - Change Notify Protocol 02(saml-2.0-notify-draft-02.zip) uploaded
>> Relating to "retireSubject", I had a conversation about whether there > needs >> to be an action step to confirm deletion. It occurs to me that the target >> may wish for example to perform a SAML Attribute Query to confirm the >> changed state of the subject from the notifier. > > I think you run into the same problem. What are you going to confirm? You > can't assume that the subject will actually disappear, so the fact that a > query returns some data doesn't mean the retirement message was ignored or > failed. From SPMLv2 : The Suspend Capability defines three operations: suspend, resume and active. · The suspend operation disables an object (immediately or on a specified date). · The resume operation re-enables an object (immediately or on a specified date). · The active operation tests whether an object is currently suspended.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]