posted 17 years ago
We currently have an application that uses opensaml to produce SAML assertions that are sent to an external app. using the browser/post model. We need to extend this application by adding a "login level" to the SAML message.
The easiest way to do this is to add this to the SAMLAttributes, but I've been told that this is not the right way to do this. But what is the right way, is something that I haven't been able to find out.
Does anyone has experience with this?