cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From conflue...@apache.org
Subject [CONF] Apache CXF > Fediz
Date Mon, 07 May 2012 07:25:00 GMT
<html>
<head>
    <base href="https://cwiki.apache.org/confluence">
            <link rel="stylesheet" href="/confluence/s/2042/9/15/_/styles/combined.css?spaceKey=CXF&amp;forWysiwyg=true"
type="text/css">
    </head>
<body style="background: white;" bgcolor="white" class="email-body">
<div id="pageContent">
<div id="notificationFormat">
<div class="wiki-content">
<div class="email">
    <h2><a href="https://cwiki.apache.org/confluence/display/CXF/Fediz">Fediz</a></h2>
    <h4>Page <b>edited</b> by             <a href="https://cwiki.apache.org/confluence/display/~owulff@apache.org">Oliver
Wulff</a>
    </h4>
        <br/>
                         <h4>Changes (3)</h4>
                                 
    
<div id="page-diffs">
                    <table class="diff" cellpadding="0" cellspacing="0">
    
            <tr><td class="diff-snipped" >...<br></td></tr>
            <tr><td class="diff-unchanged" >h2. Overview <br> <br></td></tr>
            <tr><td class="diff-changed-lines" >Apache <span class="diff-added-words"style="background-color:
#dfd;">CXF</span> Fediz is <span class="diff-deleted-words"style="color:#999;background-color:#fdd;text-decoration:line-through;">an
open source security framework.</span> <span class="diff-added-words"style="background-color:
#dfd;">a subproject of CXF.</span> Fediz helps you <span class="diff-added-words"style="background-color:
#dfd;">to</span> secure your web applications and delegates security enforcement
to the underlying application server. Authentication is externalized from your web application
to an identity provider which is a dedicated server component. The supported standard is WS-Federation
1.2 Passive Requestor Profile. Fediz supports Claims based Access control beyond Role Based
Access Control (RBAC). <br></td></tr>
            <tr><td class="diff-unchanged" > <br> <br></td></tr>
            <tr><td class="diff-snipped" >...<br></td></tr>
            <tr><td class="diff-unchanged" >h2. Features <br> <br></td></tr>
            <tr><td class="diff-added-lines" style="background-color: #dfd;">The
following features are supported by the Fediz plugin 1.0 <br>* WS-Federation 1.1/1.2
<br>* SAML 1.1/2.0 Tokens <br>* Custom token support <br>* Publish WS-Federation
Metadata document <br>* Role information encoded as AttributeStatement in SAML 1.1/2.0
tokens <br></td></tr>
            <tr><td class="diff-unchanged" > <br></td></tr>
            <tr><td class="diff-added-lines" style="background-color: #dfd;">The
following features are planned for the next release: <br>* Support for Jetty and JBoss
<br>* CXF plugin <br>* Support for encrypted SAML tokens <br>* Support for
Holder-Of-Key SubjectConfirmationMethod <br>* &quot;Resource IDP&quot; support
for Fediz IDP <br>* support for other protocols like SAML-P, OAuth <br> <br>h2.
Distribution <br> <br>tbd <br> <br>h2. Samples <br> <br>The
examples directory contains two sample projects: <br> <br>|| Sample || Description
|| Doc Page || <br>| *simpleWebapp* | a simple web application which is protected by
the Fediz IDP. The FederationServlet illustrates how to get security information using the
standard APIs. | [Blog | http://owulff.blogspot.com/2011/11/configure-tomcat-for-federation-part.html]
| <br>| *wsclientWebapp* | a protected web application which calls a web service protected
by the Fediz STS. The FederationServlet illustrates how to securely call a web service. |
[Blog | http://owulff.blogspot.com/2012/04/sso-across-web-applications-and-web_16.html] |
<br> <br>h2. Sources <br> <br>Check out the code from [http://svn.apache.org/repos/asf/cxf/fediz/trunk]
<br>Then build &amp; test using: <br>{code} <br>mvn clean install <br>{code}
<br> <br>Note: you need to use Maven 2.0.9 or newer and have the following environment
variable set: {{MAVEN_OPTS=-Xmx512m}} <br></td></tr>
    
            </table>
    </div>                            <h4>Full Content</h4>
                    <div class="notificationGreySide">
        <h1><a name="Fediz-ApacheFediz%3AAnOpenSourceWebSecurityFramework"></a>Apache
Fediz: An Open-Source Web Security Framework</h1>

<h2><a name="Fediz-Overview"></a>Overview</h2>

<p>Apache CXF Fediz is a subproject of CXF. Fediz helps you to secure your web applications
and delegates security enforcement to the underlying application server. Authentication is
externalized from your web application to an identity provider which is a dedicated server
component. The supported standard is WS-Federation 1.2 Passive Requestor Profile. Fediz supports
Claims based Access control beyond Role Based Access Control (RBAC).</p>


<h2><a name="Fediz-News"></a>News</h2>



<h2><a name="Fediz-Features"></a>Features</h2>

<p>The following features are supported by the Fediz plugin 1.0</p>
<ul>
	<li>WS-Federation 1.1/1.2</li>
	<li>SAML 1.1/2.0 Tokens</li>
	<li>Custom token support</li>
	<li>Publish WS-Federation Metadata document</li>
	<li>Role information encoded as AttributeStatement in SAML 1.1/2.0 tokens</li>
</ul>


<p>The following features are planned for the next release:</p>
<ul>
	<li>Support for Jetty and JBoss</li>
	<li>CXF plugin</li>
	<li>Support for encrypted SAML tokens</li>
	<li>Support for Holder-Of-Key SubjectConfirmationMethod</li>
	<li>"Resource IDP" support for Fediz IDP</li>
	<li>support for other protocols like SAML-P, OAuth</li>
</ul>


<h2><a name="Fediz-Distribution"></a>Distribution</h2>

<p>tbd</p>

<h2><a name="Fediz-Samples"></a>Samples</h2>

<p>The examples directory contains two sample projects:</p>

<div class='table-wrap'>
<table class='confluenceTable'><tbody>
<tr>
<th class='confluenceTh'> Sample </th>
<th class='confluenceTh'> Description </th>
<th class='confluenceTh'> Doc Page </th>
</tr>
<tr>
<td class='confluenceTd'> <b>simpleWebapp</b> </td>
<td class='confluenceTd'> a simple web application which is protected by the Fediz IDP.
The FederationServlet illustrates how to get security information using the standard APIs.
</td>
<td class='confluenceTd'> <a href="http://owulff.blogspot.com/2011/11/configure-tomcat-for-federation-part.html"
class="external-link" rel="nofollow">Blog </a> </td>
</tr>
<tr>
<td class='confluenceTd'> <b>wsclientWebapp</b> </td>
<td class='confluenceTd'> a protected web application which calls a web service protected
by the Fediz STS. The FederationServlet illustrates how to securely call a web service. </td>
<td class='confluenceTd'> <a href="http://owulff.blogspot.com/2012/04/sso-across-web-applications-and-web_16.html"
class="external-link" rel="nofollow">Blog </a> </td>
</tr>
</tbody></table>
</div>


<h2><a name="Fediz-Sources"></a>Sources</h2>

<p>Check out the code from <a href="http://svn.apache.org/repos/asf/cxf/fediz/trunk"
class="external-link" rel="nofollow">http://svn.apache.org/repos/asf/cxf/fediz/trunk</a><br/>
Then build &amp; test using:</p>
<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
<pre class="code-java">
mvn clean install
</pre>
</div></div>

<p>Note: you need to use Maven 2.0.9 or newer and have the following environment variable
set: <tt>MAVEN_OPTS=-Xmx512m</tt></p>
    </div>
        <div id="commentsSection" class="wiki-content pageSection">
        <div style="float: right;">
            <a href="https://cwiki.apache.org/confluence/users/viewnotifications.action"
class="grey">Change Notification Preferences</a>
        </div>
        <a href="https://cwiki.apache.org/confluence/display/CXF/Fediz">View Online</a>
        |
        <a href="https://cwiki.apache.org/confluence/pages/diffpagesbyversion.action?pageId=27845832&revisedVersion=2&originalVersion=1">View
Changes</a>
                |
        <a href="https://cwiki.apache.org/confluence/display/CXF/Fediz?showComments=true&amp;showCommentArea=true#addcomment">Add
Comment</a>
            </div>
</div>
</div>
</div>
</div>
</body>
</html>

Mime
View raw message