This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
SAML Authorization Decision Statement
SAML Authorization Decision Statement

Version management

Difference between version and

At line 1 added 26 lines
!!! Overview
In the authorization service example, a user is accessing an ASP-hosted application that her company is using. She navigates to a secure area of the application which requires special permissions. The ASP application can then use the SAML protocol to ask her company’s security system whether to allow her to access that secure area.
* An issuing authority decides whether to grant the request by subject "S" for access type "A" to resource "R" given evidence "E"
* Useful for distributed transactions and authorization services
* The subject could be a human or a program
* The resource could be a web page or a web service, for example
!! Example
{{{
<saml:Assertion...>
<saml:AuthorizationStatement
Decision="Permit"
Resource="http://cisus.com/rpt_12345.htm">
<saml:Subject>...</saml:Subject>
<saml:Actions
ActionNamespace="http:/...core-25/rwedc">
<saml:Action>Read</saml:Action>
</saml:Actions>
</saml:AuthorizationStatement>
</saml:Assertion>
}}}
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop