[ogsa-authn-bof] SAML-Grid Name Mapping Framework
Nate Klingenstein
ndk at internet2.edu
Mon Feb 19 13:18:51 CST 2007
Apologies, that's obviously on the response side of things. I meant
to refer to the query-side version of things, e.g. SAML 2.0
AttributeQuery or Liberty Query. See liberty-idwsf-disco-svc-
v2.0.pdf section 4.2 describing how they suggest embedding endpoint
references in SAML assertions; they include the providerId, the
address, and the ServiceType.
On 19 Feb 2007, at 18:49, Nate Klingenstein wrote:
> This is true so long as there is a consistent primary or default
> way that each IdP/DS wants to be contacted by the grid SP's. I'm
> not sure whether that's a fair assumption or not; in SAML-based
> requests, there's an optional AssertionConsumerServiceURL(e.g.
> SHIRE in Shibboleth 1.x parlance) which may differ from the default
> associated with an entity ID. I think it would be nice to preserve
> that flexibility if possible, but that may be too complex at this
> point in time.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.ogf.org/pipermail/ogsa-authn-bof/attachments/20070219/d647e382/attachment.htm
More information about the ogsa-authn-bof
mailing list