<html><head></head><body><div style="color:#000; background-color:#fff; font-family:Courier New, courier, monaco, monospace, sans-serif;font-size:13px"><div><span>Yes,absolutely. We are interested :-). I am presuming you are also going to support the UMA standard.</span></div><div class="qtdSeparateBR" id="yui_3_16_0_1_1456920520807_3622"><br><br></div><div class="yahoo_quoted" id="yui_3_16_0_1_1456920520807_3643" style="display: block;"> <div style="font-family: Courier New, courier, monaco, monospace, sans-serif; font-size: 13px;" id="yui_3_16_0_1_1456920520807_3642"> <div style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;" id="yui_3_16_0_1_1456920520807_3641"> <div dir="ltr" id="yui_3_16_0_1_1456920520807_3640"> <font size="2" face="Arial" id="yui_3_16_0_1_1456920520807_3644"> <hr size="1"> <b><span style="font-weight:bold;">From:</span></b> Stian Thorgersen <sthorger@redhat.com><br> <b><span style="font-weight: bold;">To:</span></b> Charles Moulliard <cmoulliard@redhat.com> <br><b><span style="font-weight: bold;">Cc:</span></b> keycloak-user <keycloak-user@lists.jboss.org><br> <b><span style="font-weight: bold;">Sent:</span></b> Wednesday, March 2, 2016 7:04 AM<br> <b><span style="font-weight: bold;">Subject:</span></b> Re: [keycloak-user] XACML support ?<br> </font> </div> <div class="y_msg_container" id="yui_3_16_0_1_1456920520807_3645"><br><div id="yiv7767537340"><div id="yui_3_16_0_1_1456920520807_3647"><div dir="ltr" id="yui_3_16_0_1_1456920520807_3646">We are planning on providing an early preview of this feature soon (within a month or two), so stay tuned. It will be announced on <a rel="nofollow" shape="rect" target="_blank" href="http://blog.keycloak.org/" id="yui_3_16_0_1_1456920520807_3713">blog.keycloak.org</a> when it's available. The aim of the prototype is to find out if this is something users are interested in or not.</div><div class="yiv7767537340yqt1901297090" id="yiv7767537340yqt63274"><div class="yiv7767537340gmail_extra" id="yui_3_16_0_1_1456920520807_3648"><br clear="none"><div class="yiv7767537340gmail_quote" id="yui_3_16_0_1_1456920520807_3651">On 29 February 2016 at 12:49, Charles Moulliard <span dir="ltr" id="yui_3_16_0_1_1456920520807_3650"><<a rel="nofollow" shape="rect" ymailto="mailto:cmoulliard@redhat.com" target="_blank" href="mailto:cmoulliard@redhat.com" id="yui_3_16_0_1_1456920520807_3649">cmoulliard@redhat.com</a>></span> wrote:<br clear="none"><blockquote class="yiv7767537340gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;" id="yui_3_16_0_1_1456920520807_3715">
<div id="yui_3_16_0_1_1456920520807_3714">
Is there a jira ticket opened in Keycloak for that ("adding
authorization services to Keycloak") ?<div id="yui_3_16_0_1_1456920520807_3720"><div class="yiv7767537340h5" id="yui_3_16_0_1_1456920520807_3719"><br clear="none">
<br clear="none">
On 29/02/16 11:56, Stian Thorgersen wrote:<br clear="none">
<blockquote type="cite" id="yui_3_16_0_1_1456920520807_3735">
<div dir="ltr" id="yui_3_16_0_1_1456920520807_3734">The functionality that was going to be merged from
PicketLink was mainly SAML support, which has been merged.
<div id="yui_3_16_0_1_1456920520807_3736"><br clear="none">
</div>
<div id="yui_3_16_0_1_1456920520807_3737">For XACML we are considering adding support for that in the
future by adding authorization services to Keycloak. It'll be
a while until that is ready though.</div>
</div>
<div class="yiv7767537340gmail_extra" id="yui_3_16_0_1_1456920520807_3738"><br clear="none">
<div class="yiv7767537340gmail_quote" id="yui_3_16_0_1_1456920520807_3739">On 29 February 2016 at 11:32, Charles
Moulliard <span dir="ltr"><<a rel="nofollow" shape="rect" ymailto="mailto:cmoulliard@redhat.com" target="_blank" href="mailto:cmoulliard@redhat.com">cmoulliard@redhat.com</a>></span>
wrote:<br clear="none">
<blockquote class="yiv7767537340gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;" id="yui_3_16_0_1_1456920520807_3740">Hi,<br clear="none">
<br clear="none">
The project picketlink provides a servlet able to that can
read SOAP<br clear="none">
messages that contain an XACML query in saml payload<br clear="none">
<a rel="nofollow" shape="rect" target="_blank" href="https://github.com/picketlink/picketlink/blob/master/modules/federation/src/main/java/org/picketlink/identity/federation/web/servlets/saml/SOAPSAMLXACMLServlet.java#L56-L62" id="yui_3_16_0_1_1456920520807_3741">https://github.com/picketlink/picketlink/blob/master/modules/federation/src/main/java/org/picketlink/identity/federation/web/servlets/saml/SOAPSAMLXACMLServlet.java#L56-L62</a><br clear="none">
<br clear="none">
<a rel="nofollow" shape="rect" target="_blank" href="https://developer.jboss.org/wiki/XACMLPDPSOAPService">https://developer.jboss.org/wiki/XACMLPDPSOAPService</a><br clear="none">
<br clear="none">
As the project picketlink is going to be merged with
Keycloak, I'm<br clear="none">
wondering if XACML will be supported with Keycloak or not ?<br clear="none">
<br clear="none">
Regards,<br clear="none">
<br clear="none">
Charles<br clear="none">
_______________________________________________<br clear="none">
keycloak-user mailing list<br clear="none">
<a rel="nofollow" shape="rect" ymailto="mailto:keycloak-user@lists.jboss.org" target="_blank" href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a><br clear="none">
<a rel="nofollow" shape="rect" target="_blank" href="https://lists.jboss.org/mailman/listinfo/keycloak-user">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br clear="none">
</blockquote>
</div>
<br clear="none">
</div>
</blockquote>
<br clear="none">
</div></div></div>
</blockquote></div><br clear="none"></div></div></div></div><br><div class="yqt1901297090" id="yqt07816">_______________________________________________<br clear="none">keycloak-user mailing list<br clear="none"><a shape="rect" ymailto="mailto:keycloak-user@lists.jboss.org" href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a><br clear="none"><a shape="rect" href="https://lists.jboss.org/mailman/listinfo/keycloak-user" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a></div><br><br></div> </div> </div> </div></div></body></html>