Request specified use of an unsupportable identifier format: urn:mace:shibboleth:1.0:nameIdentifier
Peter Schober
peter.schober at univie.ac.at
Wed Jun 9 21:02:37 UTC 2021
* Cantor, Scott <cantor.2 at osu.edu> [2021-06-09 20:14]:
> There is no reason why any SP should ever *require* either format
> and asking/demanding that it be used is a bug. It makes no sense to
> demand somebody send you an identifier that's intentionally
> non-persistent.
Hypothetical and very silly: How about when you want to be able to
support SLO (cough) *and* are a data protection nut? You'd need some
form of NameID for the former but wouldn't want to be burdened with
anything other than transient for the latter...? (Running for cover.)
-peter
More information about the users
mailing list