shibboleth-dev - RE: More re: timestamp
Subject: Shibboleth Developers
List archive
- From: Scott Cantor <>
- To: 'RL 'Bob' Morgan' <>
- Cc: 'Shibboleth Dev Team' <>
- Subject: RE: More re: timestamp
- Date: Tue, 06 Jan 2004 10:10:19 -0500
- Importance: Normal
- Organization: The Ohio State University
> Well, the current profiles don't specify how the browser gets from the
> target to the "inter-site transfer service", so seems like it
> would, or could.
This is true, but Liberty actually does specify a 302. There's been talk
about looking at whether another status code might be more accurate, but
probably the overall rules should be relaxed.
BTW, I don't know how relevant the meta-refresh is to this anyway. A
redirect also doesn't populate the history list, normally. The real "trick"
is the use of the cookie to carry the rquest, which allows the app to clear
it such that the Back button invocation looks different to the login URL
without it actually being a different URL.
-- Scott
- More re: timestamp, Scott Cantor, 01/05/2004
- Re: More re: timestamp, RL 'Bob' Morgan, 01/05/2004
- RE: More re: timestamp, Scott Cantor, 01/05/2004
- RE: More re: timestamp, RL 'Bob' Morgan, 01/06/2004
- RE: More re: timestamp, Scott Cantor, 01/06/2004
- RE: More re: timestamp, RL 'Bob' Morgan, 01/06/2004
- RE: More re: timestamp, Scott Cantor, 01/05/2004
- Re: More re: timestamp, RL 'Bob' Morgan, 01/05/2004
Archive powered by MHonArc 2.6.16.