Return-Path: X-Original-To: apmail-cxf-issues-archive@www.apache.org Delivered-To: apmail-cxf-issues-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 70A72D862 for ; Wed, 10 Oct 2012 16:49:03 +0000 (UTC) Received: (qmail 63655 invoked by uid 500); 10 Oct 2012 16:49:03 -0000 Delivered-To: apmail-cxf-issues-archive@cxf.apache.org Received: (qmail 63636 invoked by uid 500); 10 Oct 2012 16:49:03 -0000 Mailing-List: contact issues-help@cxf.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cxf.apache.org Delivered-To: mailing list issues@cxf.apache.org Received: (qmail 63626 invoked by uid 99); 10 Oct 2012 16:49:03 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 10 Oct 2012 16:49:03 +0000 Date: Wed, 10 Oct 2012 16:49:03 +0000 (UTC) From: "Daniel Kulp (JIRA)" To: issues@cxf.apache.org Message-ID: <742585315.20503.1349887743330.JavaMail.jiratomcat@arcas> In-Reply-To: <456255706.775.1344364810235.JavaMail.jiratomcat@issues-vm> Subject: [jira] [Updated] (CXF-4457) Extend WS-SecureConversation to support SAML Assertions for authentication MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/CXF-4457?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Daniel Kulp updated CXF-4457: ----------------------------- Fix Version/s: (was: 2.7.0) > Extend WS-SecureConversation to support SAML Assertions for authentication > -------------------------------------------------------------------------- > > Key: CXF-4457 > URL: https://issues.apache.org/jira/browse/CXF-4457 > Project: CXF > Issue Type: Improvement > Components: WS-* Components > Reporter: Glen Mazza > > Hi, as shown for GlassFish Metro: > https://gist.github.com/3191480 > Support the following authentication mechanism: > 1.) The WSC gets a SAML assertion from the STS. > 2.) The WSC sends that SAML assertion to the WSP to get the SCT from the WSP > 3.) All subsequent real calls for doubled numbers between WSC and WSP use the SCT and not the SAML assertion. > Here is a Netbeans-generated WSDL for this scenario: > https://github.com/gmazza/blog-samples/blob/master/cxf_sts_tutorial/service/src/main/resources/DoubleItSecrConv.txt > A sample testcase that can be used (steps to use: update WSP WSDL with the one above, run mvn clean install from base folder, then mvn exec:exec from client folder): https://github.com/gmazza/blog-samples/tree/master/cxf_sts_tutorial -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira