shibboleth-dev - Re: [Shib-Dev] IdP authn features
Subject: Shibboleth Developers
List archive
- From: Jim Fox <>
- To: "" <>
- Subject: Re: [Shib-Dev] IdP authn features
- Date: Mon, 15 Dec 2008 10:23:05 -0800
My original intent was to make this UW specific as you suggest. Supporting the more generic method as well (in the more distant future, maybe) might make us a bit more federation friendly though.
Jim
On Dec 15, 2008, at 9:23 AM, RL 'Bob' Morgan wrote:
2) SecureID: pubcookie supports this also, with a distinct authn ur l
to trigger securid login. Is this a proper use of authnContextClassRef
? If so, is there a way to communicate 'secureid' to the handler in
(1)? or should I implement a separate login handler for this?
I think we'd want to define a UW-specific authnContext for this purpose
since it's really a UW-specific method, especially since we now have a mix
of SecurID and OATH tokens. I suppose if there were support already in
SPs for a vaguely applicable SAML-spec-defined authnContext (eg
TimeSyncToken) such that that method could be configured easily then we
could just use that and ignore the discrepancy. I don't know what support
there is in the Shib SP (or other SPs) for configuring contexts or adding
new ones though.
- RL "Bob"
- IdP authn features, Jim Fox, 12/13/2008
- RE: [Shib-Dev] IdP authn features, Scott Cantor, 12/13/2008
- Re: [Shib-Dev] IdP authn features, Chad La Joie, 12/13/2008
- Re: [Shib-Dev] IdP authn features, RL 'Bob' Morgan, 12/15/2008
- RE: [Shib-Dev] IdP authn features, Scott Cantor, 12/15/2008
- Re: [Shib-Dev] IdP authn features, Jim Fox, 12/15/2008
Archive powered by MHonArc 2.6.16.