The definition of principal

Cantor, Scott cantor.2 at
Thu Sep 25 15:47:17 EDT 2014

On 9/25/14, 3:40 PM, "Mike Flynn" <shibbolethlynda at> wrote:

>What exactly is meant by system entity?

I'm pretty sure somebody just complained about that glossary definition on

>Does the principal in an assertion have any association with the user
>specific data being passed as attributes?

There isn't anything in SAML that syntactically mentions the word
"principal", it's only used in its security connotation in the spec.

The attributes in a SAML attribute statement are supposed to be about the
subject of the assertion, whether the subject is explicitly identified or
implicitly identified only as "the bearer of the assertion".

-- Scott

More information about the users mailing list