Luchesar V. ILIEV wrote on 06/17/2010 04:02 PM:
> Sorry to interfere, but what service are we talking about?
>
> If we're talking about OT services (as opposed to the OpenSSO/Policy
> services), then probably it's up to the service developers to decide.
> And when we talk about uploading of data or requesting computations
> that create new data, then, besides the token, we also need to provide
> the desired policies to the service -- as we discussed on Friday.
> Frankly, I'm not quite sure what would be the best approach to send
> this information...
>
> L.

I only meant the OpenSSO service.
Looking at it more closely, I see Pantelis mentioning "a service", which 
may be any service.
As far as OpenTox services are concerned, it is of course a design decision.

A.