Hi Daniel,
Where in the specs does
it state that if AppliesTo is present, the token must be encrypted?
George
Mike,
It doesn't look like the STS encrypts a token when the AppliesTo
element is sent in the RST. The specification says that it is the
responsibility of the STS to encrypt the token in this case. Is that how
you understand it? If so, is there some configuration option I need
to set to ensure that this happens? If it is not currently implemented, do
you have any plans to implement this anytime soon?
Thanks,
Daniel
**********************************************************************
This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.
**********************************************************************
|