...
Issue: 17
String Attribute Values
When consuming attributes with standard definitions, Service Providers SHOULD NOT impose constraints on attribute values that are not part of the definitions of those attributes. <needs more editing from here> be prepared to support the consumption of <saml2:Attribute>
elements containing any arbitrary xs:string value in the Name
attribute and any arbitrary xs:anyURI value in the NameFormat
attribute.<This was taken directly from the Fed Interop profile. In this context, it's not clear whether this is expecting the SP itself to support arbitrary lengths and values, or if it's referring to the application behind the SP. If the latter, then this perhaps should be restated as a "SHOULD" with wording along the lines of "very long values and identifiers...">This may imply supporting extra long attribute values, multiple attribute values, broad character set support,and the like.
IdP Error URLs
IdP deployers MUST provide a working error URL in published metadata
...