...
Remaining work is mostly around refactoring the former SecurityPolicyRule components into the new more general MessageHandler abstraction. This work is fairly mechanical.
There are however some conceptual issues to be worked out as to exactly how and what to represent in the message state. We formerly had overlapping and confusing concepts such as "message issuer", "peer entity" and "relying party", which need to be cleaned up in the new design. Chad had already implemented some changes in this regard in the IdP work. However, we need to reconcile what is there now with what needs to be in the OpenSAML layer for the more general message processing cases. We may need to re-think some of what is there.
...