[Concordia] Required Claim

Ari Kermaier ari.kermaier at oracle.com
Sat Apr 5 21:35:53 EDT 2008 

I thought we agreed that, aside from the authn mechanism URI, the required claims would be givenname and surname.
::Ari

  -----Original Message-----
  From: community-bounces at projectconcordia.org [mailto:community-bounces at projectconcordia.org]On Behalf Of Ashish Jain
  Sent: Saturday, April 05, 2008 3:52 PM
  To: community at projectconcordia.org
  Subject: [Concordia] Required Claim


  Is there any agreement on what should be the required claim (other than the AuthnContext)? 
  Should this be PPID or givenname? I'm testing with various providers and don't see this being consistent. 
  I can get around by a bunch of if/else statements, but it would be nice if we can agree on a single user identifier for the Infocard IdP (self and managed) that can be mapped to the subject.
  Thanks.




  On Apr 4, 2008, at 6:23 PM, Caleb Baker wrote:

    Forwarding for anybody not on the OSIS mailing list.

    From: Caleb Baker 
    Sent: Friday, April 04, 2008 4:37 PM
    To: 'user-centric-identity-interop at googlegroups.com'
    Subject: Changes to the federatedIdentity.net site

    Since we are getting close to RSA, I just wanted to send a short mail to let people know about the changes we made to the site today.

    - changed the managed card claim URI’s to use those defined in section 8.5 of the ISIP
    - ignore SubjectConfirmationData at our fed passive RP (instead of throw)
    - added policy lookup table, so registered RP don’t need to provide wreply, we will look it up based on wtream ( below is our current look up table, let me know if anybody else would like to be added)
                    wtrealm     wreply
    https://relyingparty.federatedidentity.net      https://relyingparty.federatedidentity.net/FedPassiveRP/Login.aspx
    https://saml.oracle.com/fed/sp      https://saml.oracle.com/fed/sp/wsfed11
    https://authdev.it.ohio-state.edu/shibboleth    https://authdev.it.ohio-state.edu/Shibboleth.sso/ADFS
    https://cardspace-sp.symlabs.net:8001/sp.xml    https://cardspace-sp.symlabs.net:8001/SP-P
    https://socialphotos.federationportal.com/rsa2008demo      https://socialphotos.federationportal.com/ConcordiaInterop/WS-FedRP.aspx
    - changed our username password managed card to use https instead of message security
    - Added a trust 1.3 endpoint to the echo STS (https://ipsts.federatedidentity.net/MgmtConsole/TestAccount.aspx?cardType=echoCard)


    See ya next week,
    Caleb



    _______________________________________________
    Community mailing list
    Community at projectconcordia.org
    http://lists.projectconcordia.org/mailman/listinfo/community

    Participating in this discussion list does not grant any intellectual property rights or any commitment by the participants of the content discussed to any organization.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.projectconcordia.org/pipermail/community/attachments/20080405/5a744cc2/attachment-0002.html

More information about the Community mailing list