On the call yesterday, Scott pointed out the liklihood of typos in my deck exploring SAML/OAuth hybrid scenarios from IIW Enclosed is an updated draft that fixed a s/SP/IdP/ error and clarified that the SAML message from OAuth Consumer to OAuth SP carry OAuth request params, and not an unauthorized request token. Also at http://paulmadsen.posterous.com/saml-and-oauth-hybrid-v2 Thanks Paul