clarification of unsolicited SSO behavior

Cantor, Scott cantor.2 at
Mon Aug 12 14:32:18 EDT 2013

On 8/12/13 2:22 PM, "Tom Scavo" <trscavo at> wrote:

>On Mon, Aug 12, 2013 at 12:05 PM, Cantor, Scott <cantor.2 at> wrote:
>> On 8/12/13 11:51 AM, "Tom Scavo" <trscavo at> wrote:
>>>So, for example, since the isDefault XML attribute is not
>>>used in InCommon metadata, the IdP will grab the first endpoint
>>>(smallest index) with a binding it supports. Sound right?
>> First, not smallest index.
>Since the endpoints in InCommon metadata are ordered from smallest to
>largest index, the two are the same, but you're right, and I still
>wasn't thinking about it correctly when you made your comment.

One caveat: the metadata spec doesn't address multiple protocols and
defaulting explicitly, but you can surmise that the obvious behavior is
used, and the default is the first from among the bindings associated with
the profile/protocol that's used.

-- Scott

More information about the users mailing list