Prabath Siriwardena wrote:
Hi;As per [1]; 4.2.3 tokenType (optional) --------------------------This parameter specifies the type of the token to be requested from the STS as a URI. This parameter can be omitted if the STS and the web site front-end have a mutual understanding about what token type will be provided or if the web site is willing to accept any token type.Since this is optional, shall we default [when it's being omitted by the RP] it to the value;urn:oasis:names:tc:SAML:1.0:assertionCurrent functionality expects a value for the 'tokenType' and once not provided throws an exception for invalid token type.
+1Lets recognize the default token type as "urn:oasis:names:tc:SAML:1.0:assertion" and document it.
Dumindu... is this handled in mod_cspace ? Thanks, Ruchith
Thanks & regards. - Prabath [1]: http://msdn2.microsoft.com/en-us/library/aa480726.aspx _______________________________________________ Identity-dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/identity-dev
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Identity-dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/identity-dev
