An open discussion list for topics related to the eduGAIN interfederation service.

[Davide Vaghetti <davide.vaghetti AT garr.it>]

On 24/09/19 09:21, Peter Schober wrote:
> * Tomasz Wolniewicz <twoln AT umk.pl> [2019-09-24 09:07]:
>> One could even think the the correct approach is to have people
>> update their fairly ancient schemas rather disallowing something
>> that has been in the standard for 15 years.
> 
> See my statement about SPs deployed in the wild choking on such
> metadata. It's not simply a question of "updating schemas" for a few
> (or only one) federation operator:
> 
> This stuff breaks deployments in the wild and the Shibboleth SP
> (should it be the only one) is probably the most often used SAML
> implementation on the globe. So -- contrary to what Davide said -- I'm
> very happy old schemata were used in the software I had at hand
> otherwise we would only have found out about that in a few days (or
> weeks) once Shib SP admins all over the world started asking their
> local federation operator why their SP doesn't know any IDPs anymore.

I'll say it again: if want to prohibit /xml:lang=""/ we should add that
rule it to the eduGAIN SAML Profile. Relying on software not being
updated to signal it as a schema error, IMHO, it is just odd.

Cheers,
Davide


> 
> "People should just update their software so that we can support
> corner cases noone ever asked for" is a possible approach to such
> scenarios. It's certainly not my preferred one, though.
> 
> -peter
> 

-- 
Davide Vaghetti
Consortium GARR
Tel: +390502213158
Mobile: +393357779542
Skype: daserzw

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature