shibboleth-dev - RE: Access Policy strawman
Subject: Shibboleth Developers
List archive
- From: Scott Cantor <>
- To: 'Noah Levitt' <>
- Cc: , ,
- Subject: RE: Access Policy strawman
- Date: Thu, 03 Jun 2004 19:50:11 -0400
- Organization: The Ohio State University
> In the third example I have different documents ("Resource"s
> I called them) with different access requirements. I think
> it's good to put it down this far in the hierarchy so that
> there doesn't have to be a separate contract each document
> in the application.
You have Resource as a container for the attribute set that satisfies the
policy, but the contract is the attribute set, so isn't that having the
opposite effect? Or is the consumer expected to union all of the pieces
together to figure out what the actual ARP needs to be?
There's also the fact that I assumed we'd be using SAML metadata for
expressing the attribute requester's requirements unless there was an
obvious need to go a lot farther right away, and it won't contain this kind
of policy.
-- Scott
- Access Policy strawman, Noah Levitt, 06/03/2004
- RE: Access Policy strawman, Scott Cantor, 06/03/2004
- Re: Access Policy strawman, Noah Levitt, 06/03/2004
- RE: Access Policy strawman, Scott Cantor, 06/03/2004
- Re: Access Policy strawman, Noah Levitt, 06/04/2004
- RE: Access Policy strawman, Scott Cantor, 06/04/2004
- Re: Access Policy strawman, Noah Levitt, 06/04/2004
- RE: Access Policy strawman, Scott Cantor, 06/03/2004
- Re: Access Policy strawman, Noah Levitt, 06/04/2004
- RE: Access Policy strawman, Scott Cantor, 06/04/2004
- Re: Access Policy strawman, Thomas Lenggenhager, 06/07/2004
- RE: Access Policy strawman, Scott Cantor, 06/07/2004
- Re: Access Policy strawman, Thomas Lenggenhager, 06/07/2004
- RE: Access Policy strawman, Scott Cantor, 06/04/2004
- Re: Access Policy strawman, Noah Levitt, 06/03/2004
- RE: Access Policy strawman, Scott Cantor, 06/03/2004
- RE: Access Policy strawman, Scott Cantor, 06/03/2004
Archive powered by MHonArc 2.6.16.