Hi Sam: Then, there will not be a "pre-authorization phase prior an authentication" use case/profile in this draft, correct?
I ask you this since you showed some time ago your interest in this case (pre-authz prior authentication). I thought you had an use case/profile in mind in the context of aaa-saml. Best Regards. El 12/03/2014, a las 15:39, Sam Hartman <[email protected]> escribió: >>>>>> "Gabriel" == Gabriel Lopez <[email protected]> writes: > > Gabriel> What's about an initial SAMLAuthRequest from the RP to > Gabriel> the idP (before the EAP exchange) pointing out, for > Gabriel> example, some kind of LoA requirement? I though it was one > Gabriel> of the motivations for the use of SAML here. In this case > Gabriel> there is not a "state" attribute. > > That would be inconsistent with the profile described in section 8. > That would be more consistent with the profile in section 7. > There, though, I'd expect the SAML request and EAP message to be in the > same initial access-request. > > _______________________________________________ > abfab mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/abfab ------------------------------------------------------- Rafael Marin Lopez, PhD Dept. Information and Communications Engineering (DIIC) Faculty of Computer Science-University of Murcia 30100 Murcia - Spain Telf: +34868888501 Fax: +34868884151 e-mail: [email protected] ------------------------------------------------------- _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
