OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [security-services] On allowing multiple value types for an attribute

On 11/26/14, 5:38 PM, "Hal Lockhart" <hal.lockhart@oracle.com> wrote:

>I think he is referring to section 3.3.4 which says the response to any 
>of the Query requests must contain a subject which matches the subject in 
>the query. I don't see any practical way to do an attribute query without 
>specifying an identifier element. Otherwise whose attributes should be 

You could pass a SC element with a key in it, to use one example, or it 
could be front-channel with a bearer SC in it.

But in any case, the rule for a Response to a query isn't necessarily 
something that has to apply to any assertion created with an attribute 
statement in it. Though it seems that we did in fact required Subject (but 
not an ID) for that.

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]