Shibboleth Developers

["Tom Scavo" <>]

On 11/28/06, Nathan Dors 
<>
 wrote:
> In a medium-large community like UWash, some users may want these
> controls, others will be annoyed by the extra step. Maybe the
> right direction therefore involves some amount of user preference?

If that's a concern, how about once per SP, after which a user ARP is
stored at the IdP.  Then Autograph can be used to control the user
ARPs for those that are interested.

This doesn't have to be a "get in my face every time I try to access a
service" feature.  There's are lots of things that can be done to
appease the power user, but I think occasional users will appreciate
this step.  It gives them control and builds confidence.

Tom