<HTML dir=ltr><HEAD></HEAD>
<BODY>
<DIV id=idOWAReplyText50820 dir=ltr>
<DIV dir=ltr><FONT face=Arial color=#000000 size=2>Ok. I will make </FONT><FONT face=Arial size=2>a PDU by hand: an SAML2.AuthnRequest encoded in XML. Then I will p</FONT><FONT face=Arial size=2>ut this presentation data value into the SPCONFIG file on the default SessionInitiator, flagging that its a "template" PDU. Thus, the message on the wire derived from said template will carry forward the subordinate protocol elements (e.g. IDPList, ACSURL).</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>NB: I had been wondering, architecturally, if a chaining provider (of SAML2.SessionInitiators, the subset with ECP=true attribute) would be the way that Shib2 would address this issue. Seemed a cute idea, at least.</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial color=#000000 size=2></FONT> </DIV></DIV>
<DIV id=idSignature48326>
<DIV><FONT face=Arial color=#000000 size=2><SPAN style="FONT-SIZE: 7.5pt">_________________________<BR></SPAN><B>Peter Williams<BR></B></FONT><BR>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> Scott Cantor<BR><B>Sent:</B> Mon 4/28/2008 12:39 PM<BR><B>To:</B> 'Peter Williams'; wsf-dev@lists.openliberty.org<BR><B>Subject:</B> RE: [wsf-dev] ECP plugin build/execute feedback<BR></FONT><BR></DIV></DIV>
<DIV><PRE style="WORD-WRAP: break-word">> Q: is there any way via query-string to populate the IDPList with >1
entry?
No, that use case is addressed together with the general "advanced
AuthnRequest" bucket. It's a bit ugly, but you basically embed an
AuthnRequest inside the SessionInitiator in question and it will use it as a
template.
-- Scott
</PRE></DIV></BODY></HTML>