cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From conflue...@apache.org
Subject [CONF] Apache CXF Documentation > SAML Web SSO
Date Mon, 25 Jun 2012 10:07:00 GMT
<html>
<head>
    <base href="https://cwiki.apache.org/confluence">
            <link rel="stylesheet" href="/confluence/s/2042/9/1/_/styles/combined.css?spaceKey=CXF20DOC&amp;forWysiwyg=true"
type="text/css">
    </head>
<body style="background: white;" bgcolor="white" class="email-body">
<div id="pageContent">
<div id="notificationFormat">
<div class="wiki-content">
<div class="email">
    <h2><a href="https://cwiki.apache.org/confluence/display/CXF20DOC/SAML+Web+SSO">SAML
Web SSO</a></h2>
    <h4>Page  <b>added</b> by             <a href="https://cwiki.apache.org/confluence/display/~sergey_beryozkin">Sergey
Beryozkin</a>
    </h4>
         <br/>
    <div class="notificationGreySide">
         <p><span style="font-size:2em;font-weight:bold"> JAX-RS: SAML Web SSO</span></p>


<div>
<ul>
    <li><a href='#SAMLWebSSO-Introduction'>Introduction</a></li>
    <li><a href='#SAMLWebSSO-Mavendependencies'>Maven dependencies</a></li>
</ul></div>

<h1><a name="SAMLWebSSO-Introduction"></a>Introduction</h1>

<p><a href="http://en.wikipedia.org/wiki/Single_sign-on" class="external-link" rel="nofollow">SSO</a>
is about a user having to sign in only once when interacting with a custom web application
which may offer of a number of individual endpoints. </p>

<p>CXF 2.6.1 introduces a comprehensive service provider (SP) support for the SAML Web
SSO <a href="http://docs.oasis-open.org/security/saml/v2.0/saml-profiles-2.0-os.pdf" class="external-link"
rel="nofollow">profile</a>. This <a href="http://en.wikipedia.org/wiki/SAML_2.0"
class="external-link" rel="nofollow">page</a> also offers a good overview of the
<a href="http://en.wikipedia.org/wiki/SAML_2.0#Web_Browser_SSO_Profile" class="external-link"
rel="nofollow">profile</a>.</p>

<p>HTTP Redirect(via GET) and POST bindings are supported. The module has been tested
against many IDP providers and is easily configurable.</p>

<p>The following components are required to get SSO supported:</p>

<ul class="alternate" type="square">
	<li>Identity Provider (IDP) supporting SAML SSO</li>
	<li>Request Assertion Consumer Service (RACS)</li>
	<li>Application Security Filter</li>
	<li>SSO State Provider</li>
</ul>


<p>The following sections will describe these components in more details</p>

<h1><a name="SAMLWebSSO-Mavendependencies"></a>Maven dependencies</h1>

<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
<pre class="code-xml">
<span class="code-tag">&lt;dependency&gt;</span>
  <span class="code-tag">&lt;groupId&gt;</span>org.apache.cxf<span
class="code-tag">&lt;/groupId&gt;</span>
  <span class="code-tag">&lt;artifactId&gt;</span>cxf-rt-rs-security-sso-saml<span
class="code-tag">&lt;/artifactId&gt;</span>
  <span class="code-tag">&lt;version&gt;</span>2.6.1<span class="code-tag">&lt;/version&gt;</span>
<span class="code-tag">&lt;/dependency&gt;</span>
</pre>
</div></div>

    </div>
    <div id="commentsSection" class="wiki-content pageSection">
       <div style="float: right;">
            <a href="https://cwiki.apache.org/confluence/users/viewnotifications.action"
class="grey">Change Notification Preferences</a>
       </div>
       <a href="https://cwiki.apache.org/confluence/display/CXF20DOC/SAML+Web+SSO">View
Online</a>
              |
       <a href="https://cwiki.apache.org/confluence/display/CXF20DOC/SAML+Web+SSO?showComments=true&amp;showCommentArea=true#addcomment">Add
Comment</a>
           </div>
</div>
</div>
</div>
</div>
</body>
</html>

Mime
View raw message