[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Info on the Hl7 Permissions
Hi All,
(Originally posted in the XACML ml)
I have a question regarding the value of the Hl7 Permission defined by the
XSPA-XACML profile.
<saml2:Attribute
FriendlyName="Hl7 Permissions"
Name="urn:oasis:names:tc:xspa:1.0:subject:hl7:permission"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml2:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema";
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";
xsi:type="xs:string">
urn:oasis:names:tc:xspa:1.0:subject:hl7:PRD-004
</saml2:AttributeValue>
In the documents containing sample SAML assertions found in the OASIS
website [1], the value of
this attribute is set as shown in the above fragment, but there are no
normative information
on how to encode the Hl7 Permission.
My doubt is the following: prefixing the permission using
urn:oasis:names:tc:xspa:1.0:subject:hl7
doesn't have a semantic of the exact value (the permission).
Wouldn't be better to specify exactly what is this value? e.g. by
adding urn:oasis:names:tc:xspa:1.0:subject:hl7:permission:PRD-004?
Or even to avoid to prefix with anything, since the attribute name is
already specifying the value?
Thanks for your answer,
Massimiliano Masi
[1] http://www.google.it/url?sa=t&source=web&cd=4&ved=0CCYQFjAD&url=http%3A%2F%2Fwww.oasis-open.org%2Fcommittees%2Fdownload.php%2F30430%2Fxspa-xacml-examples-01.doc&rct=j&q=xspa%20xacml%20sample&ei=h6q5TPS8J87tOaH7gI4N&usg=AFQjCNG87-XSplnnE-OGaM320i8oZsCbVA
--
Massimiliano Masi
http://www.mascanc.net/~max
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]