Skip to Content.
Sympa Menu

mace-opensaml-users - Re: Multiple subjects in SAML 1.x statement?

Subject: OpenSAML user discussion

List archive

Re: Multiple subjects in SAML 1.x statement?


Chronological Thread 
  • From: "Tom Scavo" <>
  • To:
  • Subject: Re: Multiple subjects in SAML 1.x statement?
  • Date: Thu, 13 Dec 2007 14:27:57 -0500
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=HtjP1F/1TnVlkaKgZYBNGtAe3KZCMOS5h9vfertM9yk7CrLp7nKrVZn+Zc9gBYgjAyT4ZyIatDCgCxIxNfRPHzrS1wWG+gUZRoBogRL9TMXl1NXyQ0NHsJh6RT27312iqqhvHCaIQawqvX5im0PWSHGSGHYy28SAbP6qe8eUJbA=

On Dec 13, 2007 2:23 PM, Scott Cantor
<>
wrote:
>
> > I've written a profile for SAML V1.1 assertions that anticipates this
> > and other differences between V1.1 and V2.0. We've implemented this
> > profile using OpenSAML 1.1. The implementation enforces the "one
> > subject" rule per assertion, for instance.
>
> Yes, my general opinion is that using SAML 1.1 to do something you can't do
> in SAML 2.0 would be a bad idea.
>
> Have you thought about tossing that profile over the wall to OASIS?

Yes, but the SSTC doesn't appear to have much interest in SAML V1.1
(understandably) so I've refrained. If you'd like to co-edit this
with me, let me know and I'll send it along for your review. Or I
could post it here for all to see if you think that's best.

Tom



Archive powered by MHonArc 2.6.16.

Top of Page