>> >>2. In section 3, I would suggest adding the text "There MUST be at
>> >>most one SAML-Message Attribute in either a RADIUS request or
>> response
>> >>message."
>> >
>> >Ok.
>>
>> Just pedalling back here. Owing to the length constraint of RADIUS
>attributes,
>> we will generally need to fragment the SAML message across multiple
>>SAML-
>> Message attributes within the RADIUS message.
>
>Yes you are right it can be fragmented, is there a way to say that you can
>only have one "unfragmented attribute" in a "logical message"?
It says that already in section 4.2, in the context of the Binding: "The
SAML responder MUST NOT include more
than one SAML response".
Josh.
Janet is a trading name of The JNT Association, a company limited
by guarantee which is registered in England under No. 2881024
and whose Registered Office is at Lumen House, Library Avenue,
Harwell Oxford, Didcot, Oxfordshire. OX11 0SG
_______________________________________________
abfab mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/abfab
