OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

security-services message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: New drafts posted

Didn't send emails for some reason.

https://www.oasis-open.org/committees/document.php?document_id=59594 (ODT)

https://www.oasis-open.org/committees/document.php?document_id=59595 (PDF)

The only substantive change I made was to soften a MUST around an SP supposedly making sure to never use the extension if it can use requested attributes in metadata. That seems overly harsh and impossible, there's no way an SP would likely even know. The IdP could have its own metadata for all it knows.

I think this is being overthought, it's an extension, it's optional, the IdP doesn't have to even listen to it, etc.

I left it a SHOULD, but even that seems too strong to me. Seems safe to say anybody using this isn't relying on metadata to specify attributes so it's not a big deal.

-- Scott

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]