I'm now wondering to what extent people are currently using different IDs with different SPs, whether people have discovered any problems with storing or using a rule to determine the ID passed, and which method people are using. Would anyone who has implemented it do it a different way if they were doing it again?
Tim
>>> On Tue, Apr 17, 2007 at 9:41 AM, Jon Warbrick <[log in to unmask]> wrote:
>
> I think you are confusing eduPersonTargetedID (consistent, opaque
> pseudonym for the user that is different for each service provider) and
> eduPersonPrincipleName (persistent user identifier, consistent across all
> services). Advantages of the former include preventing collusion between
> SPs, and the fact that it's probably not DPA- style 'personal data' and is
> therefore easier and safer to process.
>
> Jon.
|