A simple SAML token validation web service?

[Paul Trevithick]

A website operator just asked me for advice on how to become an infocard relying party. I'm familiar with the solutions listed here [1] where you kind of tightly integrate things.

But it got me to thinking that it would be really handy if there were some simple web service that you could post the token to with some "here's the domain it better be signed with" parameter and the web service would validate it, parse it and return back the claim values.

Does something like that already exist?

--Paul

[1] http://informationcard.net/resources/relying-party-solutions

[David Croston]

Paul et al.:

My firm developed a validation registry which may be of interest to you.  If you have a moment, review the attached whitepaper and see if it sparks some ideas.  I may be interested in standing a community resource...

Dave

David Croston, CEO

IAM Technology, Inc.

Lexington, MA 02420  USA

866-585-6280

david....@iamtech.com

--
General mailing list for Information Cards, the Information Card Foundation, and open identity infrastructure. For more information, visit http://informationcard.net
To post to this group, send email to icf-co...@googlegroups.com
To unsubscribe from this group, send email to
icf-communit...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/icf-community?hl=en

[Michael Versace]

Paul. speak with IAM tech, boston. Dave Croston. His tech can tell an app / user whether the token is in membership or not, and when. Very simple and scalable.

via iPhone