Entity Statement Hosting
All Entities in a federation SHOULD be prepared to publish an Entity Statement about themselves (Entity Configuration). If they are not able to do so themselves, another issuer MUST do it for them.
I don’t understand why this matters. If it matters, the text should also say that a another party can publish the entity configuration on behalf of the entity. That’s an option we implement in our current federation prototype for the GAIN technical PoC. Our central platform will publish the entity configurations of all our RPs and OPs.
Comments (7)
-
reporter -
I agree, I suggest to remove the text:
“““
If they are not able to do so themselves, another issuer MUST do it for them.
“““
This is misleading considering that an entity configuration is hosted on the fqdn of the entity that issues its entity configuration. So the entity configuration Is self hosted and self issued.
-
-
I agree with this deletion.
-
-
- changed status to open
Per the discussion on the 6-Oct-22 working group call, we will delete the misleading sentence.
-
- changed status to resolved
- Log in to comment
I also don’t understand how another issuer can publish the entity configuration of a certain entity as those are by definition self issued.