[Ietf-http-auth] Re: [SAML-mechanism] RE: as in SAML SASL
Nicolas.Williams at sun.com
Mon Nov 14 14:48:41 PST 2005
On Mon, Nov 14, 2005 at 05:43:59PM -0500, Jeffrey Altman wrote:
> Nicolas Williams wrote:
> > On Fri, Nov 11, 2005 at 02:11:34AM +0100, Leif Johansson wrote:
> > Exactly.
> > Note that if we do go in this direction and choose the GSS-API then
> > we'll probably want to "port" some SASL non-GSS mechanisms to the
> > GSS-API so we can use those credentials here.
> > Nico
> In that case, we then end up in a world in which there are no SASL
> mechanisms other than GSS mechanisms. SASL then becomes an higher level
> GSS API.
> Is this an intermediary step towards API/Protocol convergence?
It's an independent step.
The GUAM effort proposes (it's not dead) to deal with EAP/GSS
convergence as SASL/GSS convergence is a simpler problem because SASL
already has a bridge to GSS mechanisms.
More information about the Ietf-http-auth