Back Channel Communications in shibboleth.
Peter Schober
peter.schober at univie.ac.at
Mon Jun 4 11:36:53 BST 2012
* Eddie Harari <eddie.harari at gmail.com> [2012-06-04 12:27]:
> can an SP take the SAML2 token comming from the user agent via IDP
> and use it as an authentication proof to a different SP.
> Is this a possible scenario ?
See https://wiki.oasis-open.org/security/SAML2DelegationCondition for
examples and terminology. There might also be material at
https://spaces.internet2.edu/display/ShibuPortal/Home but I don't know
the status of that,
-peter
More information about the users
mailing list