Re: [abfab] Direction Forward for aaa-saml

"Cantor, Scott" <cantor.2@osu.edu> Wed, 22 July 2015 22:27 UTC

Return-Path: <cantor.2@osu.edu>
X-Original-To: abfab@ietfa.amsl.com
Delivered-To: abfab@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 698E21B2F46 for <abfab@ietfa.amsl.com>; Wed, 22 Jul 2015 15:27:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.601
X-Spam-Level:
X-Spam-Status: No, score=-1.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MIME_8BIT_HEADER=0.3, SPF_HELO_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3IQo3A8uyyPT for <abfab@ietfa.amsl.com>; Wed, 22 Jul 2015 15:27:05 -0700 (PDT)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1bon0798.outbound.protection.outlook.com [IPv6:2a01:111:f400:fc10::1:798]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A814E1B2F48 for <abfab@ietf.org>; Wed, 22 Jul 2015 15:27:04 -0700 (PDT)
Received: from BY2FFO11FD042.protection.gbl (10.1.14.32) by BY2FFO11HUB002.protection.gbl (10.1.14.144) with Microsoft SMTP Server (TLS) id 15.1.225.13; Wed, 22 Jul 2015 22:26:43 +0000
Authentication-Results: spf=pass (sender IP is 164.107.81.216) smtp.mailfrom=osu.edu; ietf.org; dkim=none (message not signed) header.d=none;
Received-SPF: Pass (protection.outlook.com: domain of osu.edu designates 164.107.81.216 as permitted sender) receiver=protection.outlook.com; client-ip=164.107.81.216; helo=cio-tnc-pf02.osuad.osu.edu;
Received: from cio-tnc-pf02.osuad.osu.edu (164.107.81.216) by BY2FFO11FD042.mail.protection.outlook.com (10.1.14.227) with Microsoft SMTP Server (TLS) id 15.1.213.8 via Frontend Transport; Wed, 22 Jul 2015 22:26:43 +0000
Received: from CIO-KRC-HT01.osuad.osu.edu (localhost [127.0.0.1]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by cio-tnc-pf02.osuad.osu.edu (Postfix) with ESMTPS id 2547C20053; Wed, 22 Jul 2015 18:26:42 -0400 (EDT)
Received: from CIO-TNC-D2MBX02.osuad.osu.edu ([fe80::3960:dd86:ba2:ad26]) by CIO-KRC-HT01.osuad.osu.edu ([fe80::6d8f:7dea:5691:1620%12]) with mapi id 14.03.0224.002; Wed, 22 Jul 2015 18:26:41 -0400
From: "Cantor, Scott" <cantor.2@osu.edu>
To: Alejandro Pérez Méndez <alex@um.es>, "abfab@ietf.org" <abfab@ietf.org>
Thread-Topic: [abfab] Direction Forward for aaa-saml
Thread-Index: AQHQxJvuqOsHJ1Kgwk2OrlaTR/AXL53nr9yAgABRwhuAABAfAA==
Date: Wed, 22 Jul 2015 22:26:40 +0000
Message-ID: <1C7B22EA-86BF-4161-9432-086144964E98@osu.edu>
References: <tslwpxsy0ql.fsf@mit.edu> <8E4E5965-0E43-4ABD-8853-8A6C7C6926C5@mnt.se> <tsloaj4xzvr.fsf@mit.edu> <0B96365A-4F6B-427A-9A87-70F069473F84@mnt.se> <tsl7fpsxrve.fsf@mit.edu> <0A08B89E-5533-4E34-9014-97C0D7877B6E@osu.edu> <tslio9cw8yd.fsf@mit.edu> <D143C9FB-F878-49C1-89C4-6A494714A3EC@mnt.se> <tslegk0w7iw.fsf@mit.edu> <1FA8CCED-221E-4A88-B525-BF46FAA53A3F@mnt.se> <55AFC0E3.8030500@um.es> <tslpp3kuq2f.fsf@mit.edu> <55AFC24C.3070205@sunet.se> <tslh9owuptm.fsf@mit.edu> <55AFC37D.1040607@mnt.se> <tsl4mkwupis.fsf@mit.edu> <A03FA174-B811-4B78-96D7-4C18C84CB30B@osu.edu> <tslzj2otaps.fsf@mit.edu> <27CB306A-81E3-496E-8CBE-461CC58B8352@osu.edu> <55AFCAFC.6010903@sunet.se> <55B00B0C.60005@um.es>
In-Reply-To: <55B00B0C.60005@um.es>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [128.146.14.100]
Content-Type: text/plain; charset="utf-8"
Content-ID: <AB41EF3DD442FF449BCC97E9D0D8E729@osu.edu>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
X-EOPAttributedMessage: 0
X-Microsoft-Exchange-Diagnostics: 1; BY2FFO11FD042; 1:l4Oe70GiGA7ODMFr8fp36hM3RzAx1MsambCzm3P/0L/iU0p/sQJ9bqrpYu6PuZddinemvt9TrNPKvVucTwvFc2veKGmfgjw6x8jPR1NqJTjmFPpYKTmyNcTT/PkYw6kvDAkDI0LNhO6XOaCqkwkByysAYx/gM95MYhokROsflMgumPPcYWTHTd9Ws45LHIuiqW2CBdn0ZtKjE8tf1+IioJ54RJvGWXqguhSxcG2DwbmClQIkHIqV7shaFNy8/uZNVz42ghVvc+gAHYr5ex9DT9xjGWJ7jl7ibfGMI7Y5FZHZChL5Fwb91+4LTzwvxopAfizG0kFkkx6ETnEdcuPZe9xxUjkGFkB3MgMohce4PyEX2MjcCtce14alGDxym+jjV1XGt6Z5GYZbGS9nXvmBeg+OSevFN2zvy6kOVzqPIGY=
X-Forefront-Antispam-Report: CIP:164.107.81.216; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(2980300002)(438002)(479174004)(24454002)(199003)(189002)(377454003)(106116001)(5250100002)(93886004)(5001920100001)(2501003)(5001770100001)(46102003)(23676002)(36756003)(102836002)(88552001)(50466002)(75432002)(2950100001)(90282001)(2900100001)(106466001)(93346002)(107886002)(47776003)(19580405001)(92566002)(86362001)(19580395003)(6806004)(189998001)(77156002)(62966003)(66066001)(87936001)(82746002)(2656002)(83716003)(50986999)(54356999)(76176999)(33656002)(104396002); DIR:OUT; SFP:1102; SCL:1; SRVR:BY2FFO11HUB002; H:cio-tnc-pf02.osuad.osu.edu; FPR:; SPF:Pass; MLV:sfv; A:1; MX:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; BY2FFO11HUB002; 2:CuN8s+rHo8lD6p1JIqFoOjb4zDTVsDDW3XppuWXBSLG7NOFHDXHxHtfHSIz7v1ashat+vFnD0sjQWuTpF4zNAo7hVsJ6du40Q/T/2AXsoyfppst5DZF2Rzm/+b/0TZNtusn3C0sVkfcPESjvOgx3YUnS5scG/2izaALiZsks0bI=; 3:cng16epEhfaeJr0Ttk0pdNpI252xv2Kw7f0D/CoeAhDIQMvCKBETv9crY7c7Fss2EtSFFyl6mxg6isfgBixUqja2xCPJmskDWVAhnH3oUAa13bvXWMVK1UcKrIocubXviyThlULwtvxe9xBuFDe0zAt/w+H6Gic8AYn8cF0TAHcl7L9pToJWJ6bALHmNwr6bNpOT+tkvqoLt9kHPD9HXOY/16+NdMKfG/yZWMETxCdRLXIeaA/1OZa4Lhcx0j7Ej; 25:xXfkueC3Gtb/BuPeqfgIzgbG0pgtZr2EF7TENqTodZtGrFYHJUXcZOK/4vQjyquREWreuCb1ufsiCVUtsCkJGJ58LJarYGWV2HyVR56bA8GQeQBt2UKdCKJMt+O5VuYcsjRnjwsmKFzRrn8mXXxOUK0qsfYEr7WOEZRvIBIkwf56zU4cJCp3VlHN9m70bmMcD1SVM0pCCg+XxG1UVprVNdJ/liNLBxEmyqF5f2A/LNQqZ4WkgaxXlwteI42h+N9h9Za/AHmxa5qGlNbcZbvkMg==
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BY2FFO11HUB002;
X-Microsoft-Exchange-Diagnostics: 1; BY2FFO11HUB002; 20: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; 4:E06P7AAdtOunlZS93rsdaeXeywPSCGU9fFPCwLGxQYTyN6LQD8Tq1v4BDE51qsThiJTzMq2d+NXFNlQNTaJqnK379cRzQVbe9Fv4ZAxN/HUHY7uCpIsiCBv4+RF3R36wkiCLwbg1YmEOEGWBLJSTLEOWfDTANTha4QkcieRcwkRlLxiQwA5VK8BU5W17ntcWio7h16BpExj7x5PglulxNr0yN5lTpZ8/ozDye9X81FzXDNzA5HI4ydfcD2+9YpBI85buftjNBQzL3VsN5C7Qp4In2RDSlDyLVBmFfxrKK14=
BY2FFO11HUB002: X-MS-Exchange-Organization-RulesExecuted
X-Microsoft-Antispam-PRVS: <BY2FFO11HUB0020A392B7903351EAABE5BD0830@BY2FFO11HUB002.protection.gbl>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(601004)(5005006)(3002001); SRVR:BY2FFO11HUB002; BCL:0; PCL:0; RULEID:; SRVR:BY2FFO11HUB002;
X-Forefront-PRVS: 0645BEB7AA
X-Microsoft-Exchange-Diagnostics: 1;BY2FFO11HUB002;23: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
X-Microsoft-Exchange-Diagnostics: 1; BY2FFO11HUB002; 5:ZAv4ztfDwwG/7aiSTn5g5/N7dMck7l2U8kNcxh+AQ/Ad0oqlY/QIJahEhmrklv8TJO2dlVxxlubBLvo0CbVnFxS/xA04ehfJMhBqygY5w0iv7K+O8CpP/P584xlCeYCwu8Xz2CNoRJVNemWhDPIw7Q==; 24:WQz1aZjGR/Sx7hDPKQedVYofcG/6RF0k4mbsvh+EwRPr4Ce40GAHJ5wBqhvm7JDy5hVW3hrzaROR3pXKzpiwgFBdUPGgYN0AgSvDbB/UPSs=
X-OriginatorOrg: osu.edu
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 22 Jul 2015 22:26:43.2239 (UTC)
X-MS-Exchange-CrossTenant-Id: b4d138ca-1815-4a9b-a3a7-130a33b1e692
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=b4d138ca-1815-4a9b-a3a7-130a33b1e692; Ip=[164.107.81.216]; Helo=[cio-tnc-pf02.osuad.osu.edu]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY2FFO11HUB002
Archived-At: <http://mailarchive.ietf.org/arch/msg/abfab/L-Dbfo114kFFxNA2C0lCfFpfSTc>
Subject: Re: [abfab] Direction Forward for aaa-saml
X-BeenThere: abfab@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Application Bridging, Federated Authentication Beyond \(the web\)" <abfab.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/abfab>, <mailto:abfab-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/abfab/>
List-Post: <mailto:abfab@ietf.org>
List-Help: <mailto:abfab-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/abfab>, <mailto:abfab-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Jul 2015 22:27:06 -0000

On 7/22/15, 5:28 PM, "abfab on behalf of Alejandro Pérez Méndez" <abfab-bounces@ietf.org on behalf of alex@um.es> wrote:



>in addition to add the new elements to the RADIUSIDPDescriptor and 
>RADIUSRPDescriptor subtypes to include the naming information, we can 
>keep the RADIUSIDPService and RADIUSRPService elements that I already 
>defined (of type EndpointType, with minOccurs="0"), as a provision for 
>the future use of locators/endpoints. We don't need to specify the 
>specific URI format yet. Am I correct?

I think so.

>I have an additional question though. Leif mentioned that the URI format 
>of the Locator attribute will be determined by the value of the Binding 
>attribute, which is true. But, since in this document and section we are 
>specifically defining the "urn:ietf:params:abfab:bindings:radius" 
>Binding, shouldn't it be fixed to that value?

No, you wouldn't constrain the Binding even if you were defining the whole thing now, that would preclude extensibility later.

There's no need to, any Binding value somebody doesn't understand is just ignored.

-- Scott