clarification of unsolicited SSO behavior
Cantor, Scott
cantor.2 at osu.edu
Mon Aug 12 14:32:18 EDT 2013
On 8/12/13 2:22 PM, "Tom Scavo" <trscavo at gmail.com> wrote:
>On Mon, Aug 12, 2013 at 12:05 PM, Cantor, Scott <cantor.2 at osu.edu> wrote:
>> On 8/12/13 11:51 AM, "Tom Scavo" <trscavo at gmail.com> wrote:
>>>
>>>So, for example, since the isDefault XML attribute is not
>>>used in InCommon metadata, the IdP will grab the first endpoint
>>>(smallest index) with a binding it supports. Sound right?
>>
>> First, not smallest index.
>
>Since the endpoints in InCommon metadata are ordered from smallest to
>largest index, the two are the same, but you're right, and I still
>wasn't thinking about it correctly when you made your comment.
One caveat: the metadata spec doesn't address multiple protocols and
defaulting explicitly, but you can surmise that the obvious behavior is
used, and the default is the first from among the bindings associated with
the profile/protocol that's used.
-- Scott
More information about the users
mailing list