This article is rated C-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects: | |||||||||||||||||||
|
Clarification suggested
In the section discussing the 4 steps of the Browser/POST profile, I feel some clarification would be appropriate. The part "Respond with an HTML Form" does not indicate how the URI for the form's action attribute (in other words, the URI to which the form will be submitted) is determined by the Identity Provider building the form. When the principal makes a request to the IdP, the only URI supplied to the IdP is the "target" URI: namely, the resource at the service provider the principal ultimately would like to get to. When the IdP builds the form, how the IdP has obtained the action URI to use is left completely out of the discussion, by my reading. The article would be improved by including this. mariox19 (talk) 14:24, 14 August 2014 (UTC)
A Possible Response
The answer is the same for both SAML 1.1 and SAML 2.0: "These and other endpoint locations may be recorded in metadata files. Exactly how the identity provider obtains a trusted metadata file, or otherwise determines the trusted endpoint locations of a particular service provider, is out of scope with respect to SAML 1.1." Tom Scavo (talk) 18:13, 15 August 2014 (UTC)