[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [security-services] On allowing multiple value types for an attribute
On 11/26/14, 5:38 PM, "Hal Lockhart" <hal.lockhart@oracle.com> wrote: >I think he is referring to section 3.3.4 which says the response to any >of the Query requests must contain a subject which matches the subject in >the query. I don't see any practical way to do an attribute query without >specifying an identifier element. Otherwise whose attributes should be >returned? You could pass a SC element with a key in it, to use one example, or it could be front-channel with a bearer SC in it. But in any case, the rule for a Response to a query isn't necessarily something that has to apply to any assertion created with an attribute statement in it. Though it seems that we did in fact required Subject (but not an ID) for that. -- Scott
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]