I finally found some time to put together a suggestion for the Assertion Flow. I separated this into a core Assertion Flow used as a basis for consistent profiling, and a SAML specific profile. The SAML Profile is designed to allow the authorization server to accept SAML assertions with the same format and characteristics as those used in SAML Web SSO. It's certainly not complete, but I figured it is far enough along that it warrants feedback before further investment.
Please let me know how it can be improved. -cmort
draft-ietf-oauth_assertion_flow.txt
Description: draft-ietf-oauth_assertion_flow.txt
_______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
