shibboleth-dev - RE: Token passing from SSO
Subject: Shibboleth Developers
List archive
- From: "Scott Cantor" <>
- To: <>
- Cc: "'Nate Klingenstein'" <>, "'Shibboleth Development'" <>
- Subject: RE: Token passing from SSO
- Date: Wed, 22 Jun 2005 16:55:46 -0400
- Organization: The Ohio State University
> I see what you mean. The providerId that gets sent to the IdP is never
> returned to the SP though. Unless it gets put into an
> <Audience>? Or maybeit does - what's your thoughts?
It's in the Audience. It's a SHOULD in the spec, though, admittedly. In 2.0,
it's a MUST.
> The first thing the gateway, as you put it, knows about a Shibboleth
> session is when an AuthenticationStatement from an IdP arrives. The
> gateway didn't initiate this. A guard did that. If the Audience contained
> the Guard's providerId that would solve the problem.
It would if you assign each guard the right providerId when it makes its
AuthnRequest GET.
-- Scott
- Token passing from SSO, Alistair Young, 06/22/2005
- Re: Token passing from SSO, Nate Klingenstein, 06/22/2005
- Re: Token passing from SSO, Alistair Young, 06/22/2005
- RE: Token passing from SSO, Scott Cantor, 06/22/2005
- RE: Token passing from SSO, Alistair Young, 06/22/2005
- RE: Token passing from SSO, Scott Cantor, 06/22/2005
- RE: Token passing from SSO, Alistair Young, 06/22/2005
- RE: Token passing from SSO, Scott Cantor, 06/22/2005
- RE: Token passing from SSO, Alistair Young, 06/22/2005
- RE: Token passing from SSO, Scott Cantor, 06/22/2005
- RE: Token passing from SSO, Alistair Young, 06/22/2005
- RE: Token passing from SSO, Scott Cantor, 06/22/2005
- Re: Token passing from SSO, Alistair Young, 06/22/2005
- RE: Token passing from SSO, Scott Cantor, 06/22/2005
- Re: Token passing from SSO, Nate Klingenstein, 06/22/2005
Archive powered by MHonArc 2.6.16.