On 28 Nov 2011, at 16:21 , Cantor, Scott wrote: > On 11/28/11 10:04 AM, "Sam Hartman" <[email protected]> wrote: > >> I'm generally in favor of exploring both relaxing the 4k limit and/or >> defining a mechanism so that SAML attributes can be spread across >> multiple messages. >> >> I'm not generally in favor of defining a generic radius fragmentation >> message. > > Obviously I want to see the limit dealt with, but I would note that SAML > is not the issue here, the user data is. The XML framing is not a > significant source of size, and the problem won't be any different with > JWT.
Agreed. As far as I can tell, we are talking about how to spread user identity data required for authorization into several RADIUS messages (and necessarily in several RADIUS atributes). The precise format of the identity data is immaterial. And looking at how the thread is evolving I think that the ideas are converging… Be goode, -- "Esta vez no fallaremos, Doctor Infierno" Dr Diego R. Lopez Telefonica I+D e-mail: [email protected] Tel: +34 913 129 041 Mobile: +34 682 051 091 ----------------------------------------- Este mensaje se dirige exclusivamente a su destinatario. Puede consultar nuestra política de envío y recepción de correo electrónico en el enlace situado más abajo. This message is intended exclusively for its addressee. We only send and receive email on the basis of the terms set out at. http://www.tid.es/ES/PAGINAS/disclaimer.aspx _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
