shibboleth-dev - RE: Attribute Queries in Shib 2

Subject: Shibboleth Developers

List archive

RE: Attribute Queries in Shib 2

From: "Scott Cantor" <>
To: <>
Subject: RE: Attribute Queries in Shib 2
Date: Mon, 9 Jul 2007 11:18:53 -0400
Organization: The Ohio State University

> If you're an IdP and you're concerned with pushing attributes on the
> front channel, and you can't (or won't) do encryption, why not support
> a push/pull combination where benign attributes are pushed and more
> sensitive attributes are queried on the back channel? If the SP needs
> additional attributes, it can query.

If you're willing and able to use a back-channel, there's really no reason
to push anything. With 2.0, you can just use artifact, we already have to
build and deploy real state replication into the IdP anyway.

The cost of pulling data is that nobody can seem to manage to configure it
without tons of help from us, but maybe it will get a bit easier once we
have a Tomcat only install, don't know yet.

-- Scott

Attribute Queries in Shib 2, Chad La Joie, 07/05/2007
- RE: Attribute Queries in Shib 2, Scott Cantor, 07/05/2007
- Re: Attribute Queries in Shib 2, Ian Young, 07/09/2007
  - Re: Attribute Queries in Shib 2, Tom Scavo, 07/09/2007
    - Re: Attribute Queries in Shib 2, Ian Young, 07/09/2007
      - Re: Attribute Queries in Shib 2, Chad La Joie, 07/09/2007
      - Re: Attribute Queries in Shib 2, Tom Scavo, 07/09/2007
        
        RE: Attribute Queries in Shib 2, Scott Cantor, 07/09/2007
  - Re: Attribute Queries in Shib 2, Chad La Joie, 07/09/2007
    - Re: Attribute Queries in Shib 2, Ian Young, 07/09/2007
      - Re: Attribute Queries in Shib 2, Chad La Joie, 07/09/2007
        
        RE: Attribute Queries in Shib 2, Scott Cantor, 07/09/2007
      - Re: Attribute Queries in Shib 2, Jim Fox, 07/09/2007
        
        Re: Attribute Queries in Shib 2, Ian Young, 07/09/2007

List archive

RE: Attribute Queries in Shib 2