mace-opensaml-users - RE: [OpenSAML] Unable to extract SAML token
Subject: OpenSAML user discussion
List archive
- From: "Scott Cantor" <>
- To: <>
- Subject: RE: [OpenSAML] Unable to extract SAML token
- Date: Thu, 31 Jul 2008 11:46:08 -0400
- Organization: The Ohio State University
> On Thu, Jul 31, 2008 at 7:22 AM,
> <>
> wrote:
> > I am using SAML 1.0.
>
> The example you posted is a SAML V1.1 assertion. Am I missing something?
For the record, I didn't actually look. ;-)
That aside, my recollection is that because the ID attribute was specific to
SAML 1.1, and also "custom" in the sense that you had to know about SAML to
handle it, the WSS profile does not permit so-called direct references,
wherein you sign the assertion directly. An STR is used to wrap it with a
known element and a known ID attribute.
But as always, I defer to the spec, I don't know it in detail.
-- Scott
- Unable to extract SAML token, sburnwal, 07/31/2008
- RE: [OpenSAML] Unable to extract SAML token, Scott Cantor, 07/31/2008
- Re: [OpenSAML] Unable to extract SAML token, Tom Scavo, 07/31/2008
- RE: [OpenSAML] Unable to extract SAML token, Scott Cantor, 07/31/2008
Archive powered by MHonArc 2.6.16.