SAML 2.0 Session Token Profile Version 1.0

Web Servers and Application Servers generally maintain security state information for currently active users, particularly once some type of authentication has occurred. This specification defines a format for communicating such security session state based on the OASIS SAML Assertion. It also specifies two different mechanisms for communicating this information between servers via a standard Web browser.

Produced by:

Security Services (SAML) TC

Voting history:

November 2011

Voting History

Cite as:

Cite as:
[SAML-SESSION-TOKEN-v1.0] SAML 2.0 Session Token Profile Version 1.0.. Edited by Hal Lockhart. 23 November 2011. OASIS Committee Specification 01. Latest version: