Skip to Content.
Sympa Menu

mace-opensaml-users - Re: [OpenSAML] Help on IDP initiated : artificat binding

Subject: OpenSAML user discussion

List archive

Re: [OpenSAML] Help on IDP initiated : artificat binding


Chronological Thread 
  • From: Shrenik <>
  • To:
  • Subject: Re: [OpenSAML] Help on IDP initiated : artificat binding
  • Date: Tue, 3 Nov 2009 17:48:04 +0530 (IST)
  • Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.co.in; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=rySwqbjEHpeKG6fPGxVU+vBiEdQfhOXXEw4OSbaonWo/9hkRQ5CUfqcBwleaOQNSxkpSszMVLn9shnBNJN/ox7sGbw58qdF5XFqbuf0W+dA+4r0+zev1ET2MFaFZEvG+6llK8b/oZpfkPkRR5j4wruLOHE2JhWUbe+TK1veX4Qw=;
as discussed in the pdf file:
there are two ways of authenticating the user:
1. service provider initiated authentication (SP initiated)
2. ID provider initiated authentication (IdP initiated)
 
In case of SP initiated authentication, we can go with post binding or artifact binding(section 4.1.2 and 4.1.3 in the above pdf has the explanation). But if we choose our implementation to be IdP initiated authentication, the above mentioned pdf has explanation only for post binding(section 4.1.4).
So can we choose artifact binding for IdP initiated authentication, if yes it would be helpful if you could point me out the doc for the same.
 
Regards,
Shrenik. 

--- On Tue, 3/11/09, Chad La Joie <> wrote:

From: Chad La Joie <>
Subject: Re: [OpenSAML] Help on IDP initiated : artificat binding
To: "mace-opensaml-users" <>
Date: Tuesday, 3 November, 2009, 5:00 PM

I'm not sure what you mean by IdP-initiated artifact.  OpenSAML supports the creation of artifacts and storing those for later looking up the message based on the artifact.  Such support has nothing to do with which role the sender is currently operating in.

Shrenik wrote:
> Hi,
>
> I was working on IDP initiated : post binding for SSO implementation using opensaml 2.3.0.
> I could successfully realize it's implementation with basic reponse xml creation and parsing. Now I wanted to have a similar implementation with IDP initiated : artificat binding, and started going through the doc at
> http://www.oasis-open.org/committees/download.php/22553/sstc-saml-tech-overview-2%200-draft-13.pdf
> In this doc I could not find anything much discussed on IDP initiated : artificat binding, older versions of this doc
> had some discussion on IDP initiated : artificat binding but the latest one lacks it. Does it mean opensaml 2.3.0
> has no support for IDP initiated : artificat binding now. Or is there a updated doc discussing the same, can anyone
> please help me to fine one
>
> Regards,
> Shrenik
>
>
>       Keep up with people you care about with Yahoo! India Mail. Learn how. http://in.overview.mail.yahoo.com/connectmore

-- SWITCH
Serving Swiss Universities
--------------------------
Chad La Joie, Software Engineer, Net Services
Werdstrasse 2, P.O. Box, 8021 Zürich, Switzerland
phone +41 44 268 15 75, fax +41 44 268 15 68
, http://www.switch.ch


Yahoo! India has a new look. Take a sneak peek.

Archive powered by MHonArc 2.6.16.

Top of Page