[Openid-specs-ab] Policy based assertion

Hdknr Tact hdknr at ic-tact.co.jp
Thu Oct 7 21:09:39 UTC 2010


Yes. I think that assertion can be returned if contracts can be returned.
Because CX contract is extension and can be attached in OpenID assertion.
If some security concern exists on returning policy based assertion, it may come to returning policy based contract as well.

iPhoneから送信

On 2010/10/08, at 2:02, Nat Sakimura <sakimura at gmail.com> wrote:

> Do you mean that we should make 8.3 and 8.4 optional so that if there is a pre-approval condition existing, then the assertion is returned without user interaction? 
> 
> =nat
> 
> On Thu, Oct 7, 2010 at 1:26 PM, nara hideki <hdknr at ic-tact.co.jp> wrote:
> Hi,
> 
> I'm writing policy base contract issuing in CX and that is to be
> implemented in Request File Registration Service
> of OpenID Artifact Binding.
> Thinking of that,  OpenID AB itself should implement the policy based
> assertion issuing and it basically same
> as authorization manager issues "Requester Access Token" to "requester" in UMA.
> 
> Regards
> ----
> hideki
> _______________________________________________
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ab
> 
> 
> 
> -- 
> Nat Sakimura (=nat)
> http://www.sakimura.org/en/
> http://twitter.com/_nat_en
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20101008/d54dd5b3/attachment.html>


More information about the Openid-specs-ab mailing list