mace-opensaml-users - RE: [OpenSAML] SAML Profile question
Subject: OpenSAML user discussion
List archive
- From: Chris Card <>
- To: <>
- Subject: RE: [OpenSAML] SAML Profile question
- Date: Thu, 26 Aug 2010 15:49:12 +0000
- Importance: Normal
|
> If you want to return an error, you return a Response with an error in it > using a supported or SP chosen binding. If not, you stay engaged with the > user. > > SPs don't like or want to see IdPs trapping users and refusing to get them > back to the SP at some point, and that business issue is one of the major > drivers against consumer federation. It depends on the SP, the IdP, the > specific error, the business scenario, whether the user can rectify the > problem, etc. IdPs need to be configurable in hundreds of aspects like this > to be robust. > > That text has been tweaked in errata as well and there is discussion of it > within the last few months on the official TC list. thanks Scott, that's very helpful Chris |
- RE: [OpenSAML] Signature validation, (continued)
- RE: [OpenSAML] Signature validation, Chris Card, 08/18/2010
- RE: [OpenSAML] Signature validation, Scott Cantor, 08/18/2010
- RE: [OpenSAML] Signature validation, Chris Card, 08/19/2010
- RE: [OpenSAML] Signature validation, Scott Cantor, 08/18/2010
- RE: [OpenSAML] Signature validation, Scott Cantor, 08/18/2010
- RE: [OpenSAML] Signature validation, Chris Card, 08/18/2010
- RE: [OpenSAML] Signature validation, Chris Card, 08/19/2010
- RE: [OpenSAML] Signature validation, Scott Cantor, 08/19/2010
- [OpenSAML] SAML Profile question, Chris Card, 08/26/2010
- RE: [OpenSAML] SAML Profile question, Scott Cantor, 08/26/2010
- RE: [OpenSAML] SAML Profile question, Chris Card, 08/26/2010
Archive powered by MHonArc 2.6.16.