shibboleth-dev - Re: [Shib-Dev] idp principalconnectors
Subject: Shibboleth Developers
List archive
- From: Adam Lantos <>
- To:
- Subject: Re: [Shib-Dev] idp principalconnectors
- Date: Tue, 21 Jul 2009 15:58:33 +0200
On Tue, Jul 21, 2009 at 3:42 PM, Chad La
Joie<>
wrote:
>
>
> Adam Lantos wrote:
>>
>> When someone wants to use ComputedId (edupersontargetedid-style) as a
>> SAML2 persistent NameID, one need to implement a custom
>> principalconnector for this?
>
> It's not possible to do this. Read the docs one name identifiers if you
> care why.
Okay
> Wouldn't it be a lot easier to just
>>
>> store/cache all nameid information in the session store and look up
>> principal name by nameid-sessionindex? If the session was indexed by
>> the nameid value, back-channel code could easily look up the correct
>> session IMHO.
>
> No, as I already said, the user may not have a session.
Yeah, okay NOW I get it, this AA thing totally confused me :s
> --
> SWITCH
> Serving Swiss Universities
> --------------------------
> Chad La Joie, Software Engineer, Net Services
> Werdstrasse 2, P.O. Box, 8021 Zürich, Switzerland
> phone +41 44 268 15 75, fax +41 44 268 15 68
> ,
> http://www.switch.ch
>
>
- idp principalconnectors, Adam Lantos, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Chad La Joie, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Adam Lantos, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Chad La Joie, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Adam Lantos, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Chad La Joie, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Adam Lantos, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Chad La Joie, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Adam Lantos, 07/21/2009
- Re: [Shib-Dev] idp principalconnectors, Chad La Joie, 07/21/2009
Archive powered by MHonArc 2.6.16.