[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: proposal for issue 250: add optional TokenType attribute to STR
Thomas and I have discussed this on the list, although I think he does not agree that a change should be made. I respect his POV, but think a restructuring is in order, that it can be done without destabilizing existing profiles, and that it can serve to simplify the interpretation of STRs. Anyway, I'll put the following proposal on the table, and will be ok with whatever we decide. I propose that the following changes be made to the 1.1 core draft dated nov 8, and available at http://www.oasis-open.org/apps/org/workgroup/wss/download.php/10115/oasis-2004xx-wss-x509-token-profile-1.1-changes.pdf ------------- Add the following definition of the TokenType attribute (at approximately line 687) of the definition of the STR attribute /wsse:SecurityTokenReference/@wsse:TokenType This optional attribute is used to identify, by URI, the type of the referenced token. This specification recommends that token specific profiles define appropriate token type identifiying URI values, and that these same profiles require that these values be specified in the profile defined reference forms. make the corresponding change to the schema. the following sentence was recently added to the wsse:SecurityTokenReference/wsse:Reference/@ValueType attribute > The ValueType attribute is RECOMMENDED for BinarySecurityToken and 746 > RECOMMENDED for Reference with non-local URI. I recommend that this sentence be replaced with: The use of this attribute is deprecated. Profiles which require or recommend the use of this attribute SHOULD evolve to require or recommend the use of the wsse:SecurityTokenReference/@wsse:TokenType attribute.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]