<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
.MsoChpDefault
{mso-style-type:export-only;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
{page:WordSection1;}
--></style></head><body lang=EN-CA link=blue vlink="#954F72"><div class=WordSection1><p class=MsoNormal>Yes it would be good to get that feedback. I will also be sharing it with the MORNA WG.</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>John B.<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Sent from <a href="https://go.microsoft.com/fwlink/?LinkId=550986">Mail</a> for Windows 10</p><p class=MsoNormal><span style='font-size:12.0pt;font-family:"Times New Roman",serif'><o:p> </o:p></span></p><div style='mso-element:para-border-div;border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=MsoNormal style='border:none;padding:0cm'><b>From: </b><a href="mailto:roland.hedberg@umu.se">Roland Hedberg</a><br><b>Sent: </b>May 12, 2016 8:39 AM<br><b>To: </b><a href="mailto:nroy@internet2.edu">Nick Roy</a><br><b>Cc: </b><a href="mailto:openid-specs-ab@lists.openid.net">openid-specs-ab@lists.openid.net Ab</a><br><b>Subject: </b>Re: [Openid-specs-ab] OIDC identity federation draft</p></div><p class=MsoNormal><span style='font-size:12.0pt;font-family:"Times New Roman",serif'><o:p> </o:p></span></p><p class=MsoNormal>Hi Nick,</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>> 11 maj 2016 kl. 23:46 skrev Nick Roy <nroy@internet2.edu>:</p><p class=MsoNormal>> </p><p class=MsoNormal>> Would you mind if I share with the MACE and InCommon TAC lists?</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Not at all, the more the merrier :-)</p><p class=MsoNormal>Seriously, I really would like to have input from people on those lists.</p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>> On 5/11/16, 8:17 AM, "Openid-specs-ab on behalf of Roland Hedberg" <openid-specs-ab-bounces@lists.openid.net on behalf of roland.hedberg@umu.se> wrote:</p><p class=MsoNormal>> </p><p class=MsoNormal>>> Hi !</p><p class=MsoNormal>>> </p><p class=MsoNormal>>> A new version of the Identity federation draft is available at the same place as the last one.</p><p class=MsoNormal>>> </p><p class=MsoNormal>>> https://github.com/rohe/pyoidc/blob/master/oidc_fed/oidcfed.txt</p><p class=MsoNormal>>> </p><p class=MsoNormal>>> I invited everyone to read and provide feedback both on the model as such as well as the text.</p><p class=MsoNormal>>> </p><p class=MsoNormal>>> </p><p class=MsoNormal>>>> 8 apr. 2016 kl. 10:35 skrev Roland Hedberg <roland.hedberg@umu.se>:</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> Hi!</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> I’ve been sitting on this for a while but have deemed it ready for a bigger audience now.</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> I’ve been involved in SAML2 identity federations for quite some time now and as soon as I got involved in </p><p class=MsoNormal>>>> OIDC I started to think about how one would build an identity federation based on OIDC.</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> In the GEANT project I’m part of (GN4-1 JRA3T2) we have as a work item the production of a proof-of-concept </p><p class=MsoNormal>>>> implementation of an OIDC identity federation.</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> This document:</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> https://github.com/rohe/pyoidc/blob/master/oidc_fed/oidcfed.txt</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> describes the ideas that we want to test.</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> We’ve also gone further and have implemented all the necessary parts.</p><p class=MsoNormal>>>> Which will allow us to, in the near future, set up pilots. </p><p class=MsoNormal>>>> In fact, we have a number of SAML2 based identity federation in Europe that are interested in trying this out.</p><p class=MsoNormal>>>> Not as a replacement of the SAML2 federations but as a complement.</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> Anyway, I really would like to have you guys read the document and give us feedback on how it can be improved.</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> — Roland</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> ”I posit that life is better when you possess a sustaining practice that holds your desire, demands your attention, and requires effort; a plot of ground that gratifies the wish to labor and create — and, by so doing, to rule over an imagined world of your own.” - Anna Malamud Smith</p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> </p><p class=MsoNormal>>>> </p><p class=MsoNormal>>> </p><p class=MsoNormal>>> _______________________________________________</p><p class=MsoNormal>>> Openid-specs-ab mailing list</p><p class=MsoNormal>>> Openid-specs-ab@lists.openid.net</p><p class=MsoNormal>>> http://lists.openid.net/mailman/listinfo/openid-specs-ab</p><p class=MsoNormal>> </p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>_______________________________________________</p><p class=MsoNormal>Openid-specs-ab mailing list</p><p class=MsoNormal>Openid-specs-ab@lists.openid.net</p><p class=MsoNormal>http://lists.openid.net/mailman/listinfo/openid-specs-ab</p><p class=MsoNormal><o:p> </o:p></p></div></body></html>