cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From conflue...@apache.org
Subject [CONF] Apache CXF > Fediz
Date Mon, 07 May 2012 07:27:00 GMT
<html>
<head>
    <base href="https://cwiki.apache.org/confluence">
            <link rel="stylesheet" href="/confluence/s/2042/9/15/_/styles/combined.css?spaceKey=CXF&amp;forWysiwyg=true"
type="text/css">
    </head>
<body style="background: white;" bgcolor="white" class="email-body">
<div id="pageContent">
<div id="notificationFormat">
<div class="wiki-content">
<div class="email">
    <h2><a href="https://cwiki.apache.org/confluence/display/CXF/Fediz">Fediz</a></h2>
    <h4>Page <b>edited</b> by             <a href="https://cwiki.apache.org/confluence/display/~owulff@apache.org">Oliver
Wulff</a>
    </h4>
        <br/>
                         <h4>Changes (2)</h4>
                                 
    
<div id="page-diffs">
                    <table class="diff" cellpadding="0" cellspacing="0">
    
            <tr><td class="diff-changed-lines" >h1. Apache <span class="diff-added-words"style="background-color:
#dfd;">CXF</span> Fediz: An Open-Source Web Security Framework <br></td></tr>
            <tr><td class="diff-unchanged" > <br>h2. Overview <br></td></tr>
            <tr><td class="diff-snipped" >...<br></td></tr>
            <tr><td class="diff-unchanged" >* Publish WS-Federation Metadata document
<br>* Role information encoded as AttributeStatement in SAML 1.1/2.0 tokens <br></td></tr>
            <tr><td class="diff-added-lines" style="background-color: #dfd;">*
Claims information provided by FederationPrincipal interface <br></td></tr>
            <tr><td class="diff-unchanged" > <br>The following features
are planned for the next release: <br></td></tr>
            <tr><td class="diff-snipped" >...<br></td></tr>
            <tr><td class="diff-unchanged" > <br>|| Sample || Description
|| Doc Page || <br></td></tr>
            <tr><td class="diff-unchanged" >| *simpleWebapp* | a simple web application
which is protected by the Fediz IDP. The FederationServlet illustrates how to get security
information using the standard APIs. | [Blog |http://owulff.blogspot.com/2011/11/configure-tomcat-for-federation-part.html]
|
| *wsclientWebapp* | a protected web application which calls a web service protected by the
Fediz STS. The FederationServlet illustrates how to securely call a web service. | [Blog |http://owulff.blogspot.com/2012/04/sso-across-web-applications-and-web_16.html]
| <br></td></tr>
            <tr><td class="diff-unchanged" > <br>h2. Sources <br></td></tr>
            <tr><td class="diff-snipped" >...<br></td></tr>
    
            </table>
    </div>                            <h4>Full Content</h4>
                    <div class="notificationGreySide">
        <h1><a name="Fediz-ApacheCXFFediz%3AAnOpenSourceWebSecurityFramework"></a>Apache
CXF Fediz: An Open-Source Web Security Framework</h1>

<h2><a name="Fediz-Overview"></a>Overview</h2>

<p>Apache CXF Fediz is a subproject of CXF. Fediz helps you to secure your web applications
and delegates security enforcement to the underlying application server. Authentication is
externalized from your web application to an identity provider which is a dedicated server
component. The supported standard is WS-Federation 1.2 Passive Requestor Profile. Fediz supports
Claims based Access control beyond Role Based Access Control (RBAC).</p>


<h2><a name="Fediz-News"></a>News</h2>



<h2><a name="Fediz-Features"></a>Features</h2>

<p>The following features are supported by the Fediz plugin 1.0</p>
<ul>
	<li>WS-Federation 1.1/1.2</li>
	<li>SAML 1.1/2.0 Tokens</li>
	<li>Custom token support</li>
	<li>Publish WS-Federation Metadata document</li>
	<li>Role information encoded as AttributeStatement in SAML 1.1/2.0 tokens</li>
	<li>Claims information provided by FederationPrincipal interface</li>
</ul>


<p>The following features are planned for the next release:</p>
<ul>
	<li>Support for Jetty and JBoss</li>
	<li>CXF plugin</li>
	<li>Support for encrypted SAML tokens</li>
	<li>Support for Holder-Of-Key SubjectConfirmationMethod</li>
	<li>"Resource IDP" support for Fediz IDP</li>
	<li>support for other protocols like SAML-P, OAuth</li>
</ul>


<h2><a name="Fediz-Distribution"></a>Distribution</h2>

<p>tbd</p>

<h2><a name="Fediz-Samples"></a>Samples</h2>

<p>The examples directory contains two sample projects:</p>

<div class='table-wrap'>
<table class='confluenceTable'><tbody>
<tr>
<th class='confluenceTh'> Sample </th>
<th class='confluenceTh'> Description </th>
<th class='confluenceTh'> Doc Page </th>
</tr>
<tr>
<td class='confluenceTd'> <b>simpleWebapp</b> </td>
<td class='confluenceTd'> a simple web application which is protected by the Fediz IDP.
The FederationServlet illustrates how to get security information using the standard APIs.
</td>
<td class='confluenceTd'> <a href="http://owulff.blogspot.com/2011/11/configure-tomcat-for-federation-part.html"
class="external-link" rel="nofollow">Blog </a> </td>
</tr>
<tr>
<td class='confluenceTd'> <b>wsclientWebapp</b> </td>
<td class='confluenceTd'> a protected web application which calls a web service protected
by the Fediz STS. The FederationServlet illustrates how to securely call a web service. </td>
<td class='confluenceTd'> <a href="http://owulff.blogspot.com/2012/04/sso-across-web-applications-and-web_16.html"
class="external-link" rel="nofollow">Blog </a> </td>
</tr>
</tbody></table>
</div>


<h2><a name="Fediz-Sources"></a>Sources</h2>

<p>Check out the code from <a href="http://svn.apache.org/repos/asf/cxf/fediz/trunk"
class="external-link" rel="nofollow">http://svn.apache.org/repos/asf/cxf/fediz/trunk</a><br/>
Then build &amp; test using:</p>
<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
<pre class="code-java">
mvn clean install
</pre>
</div></div>

<p>Note: you need to use Maven 2.0.9 or newer and have the following environment variable
set: <tt>MAVEN_OPTS=-Xmx512m</tt></p>
    </div>
        <div id="commentsSection" class="wiki-content pageSection">
        <div style="float: right;">
            <a href="https://cwiki.apache.org/confluence/users/viewnotifications.action"
class="grey">Change Notification Preferences</a>
        </div>
        <a href="https://cwiki.apache.org/confluence/display/CXF/Fediz">View Online</a>
        |
        <a href="https://cwiki.apache.org/confluence/pages/diffpagesbyversion.action?pageId=27845832&revisedVersion=3&originalVersion=2">View
Changes</a>
                |
        <a href="https://cwiki.apache.org/confluence/display/CXF/Fediz?showComments=true&amp;showCommentArea=true#addcomment">Add
Comment</a>
            </div>
</div>
</div>
</div>
</div>
</body>
</html>

Mime
View raw message