[PROPOSAL] Separate Public Identifier from IdP Identifier

Chris Drake christopher at pobox.com
Fri Oct 6 18:40:17 UTC 2006

Previous message: [PROPOSAL] Separate Public Identifier from IdP Identifier
Next message: [PROPOSAL] Separate Public Identifier from IdP Identifier
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]


CHRIS DRAKE'S PROPOSED FLOW

1) User *enters* UPI, but a Discovery Agent intercepts this: UPI does
   *not* get posted to RP
2) Discovery Agent sends UPI to IdP
3) IdP authenticates against UPI
4) IdP selects appropriate RP-specific IPI
5) IdP initiates authentication with RP using IPI


Kind Regards,
Chris Drake,
=1id.com

Previous message: [PROPOSAL] Separate Public Identifier from IdP Identifier
Next message: [PROPOSAL] Separate Public Identifier from IdP Identifier
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the specs mailing list