On 4-Jun-06, at 8:43 PM, Jeff Hodges wrote:
Specifically, rather than appropriately reusing the SAML
Authentication Request Protocol and the SAML Assertion Query and
Request Protocol, draft-merrells-dix-02 invents its own Fetch
protocols and messages (which are analogous to the former SAML
abstract protocols), only cursorily basing them upon the SAML
RequestAbstractType.
Since SAML presently doesn't have a notion of a "store" protocol,
it is reasonable to invent such, though I believe one could design
it such that it intersects more fully with SAML approaches.
Our first crack at the fetch request message was exactly as you
suggest, but then we realized that the Store request would have to be
different... so we ended up switching the fetch to the same scheme to
make them more orthogonal.
These protocols do not reuse the notion of, and elements for,
"Subject"s -- rather, inventing their own top-level elements for
naming of entities (eg "SPName").
Where would you expect 'SPName' to appear?
John
_______________________________________________
dix mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dix
