On 02/10/2012 20:44, "Josh Howlett" <[email protected]> wrote:
> >>> >>2. In section 3, I would suggest adding the text "There MUST be at >>> >>most one SAML-Message Attribute in either a RADIUS request or >>> response >>> >>message." >>> > >>> >Ok. >>> >>> Just pedalling back here. Owing to the length constraint of RADIUS >>attributes, >>> we will generally need to fragment the SAML message across multiple >>>SAML- >>> Message attributes within the RADIUS message. >> >>Yes you are right it can be fragmented, is there a way to say that you >>can >>only have one "unfragmented attribute" in a "logical message"? > >It says that already in section 4.2, in the context of the Binding: "The >SAML responder MUST NOT include more > than one SAML response". Just to clarify, I believe that text says this implicitly. Obviously we can certainly can call it out more explicitly if you think that would help. Josh. Janet is a trading name of The JNT Association, a company limited by guarantee which is registered in England under No. 2881024 and whose Registered Office is at Lumen House, Library Avenue, Harwell Oxford, Didcot, Oxfordshire. OX11 0SG _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
