The definition of principal
Cantor, Scott
cantor.2 at osu.edu
Thu Sep 25 15:47:17 EDT 2014
On 9/25/14, 3:40 PM, "Mike Flynn" <shibbolethlynda at yahoo.com> wrote:
>What exactly is meant by system entity?
I'm pretty sure somebody just complained about that glossary definition on
saml-dev.
>Does the principal in an assertion have any association with the user
>specific data being passed as attributes?
There isn't anything in SAML that syntactically mentions the word
"principal", it's only used in its security connotation in the spec.
The attributes in a SAML attribute statement are supposed to be about the
subject of the assertion, whether the subject is explicitly identified or
implicitly identified only as "the bearer of the assertion".
-- Scott
More information about the users
mailing list