[picketlink-commits] Picketlink SVN: r1086 - trust/trunk/jbossws/src/main/java/org/picketlink/trust/jbossws/handler.
picketlink-commits at lists.jboss.org
picketlink-commits at lists.jboss.org
Tue Jul 12 20:54:02 EDT 2011
Author: anil.saldhana at jboss.com
Date: 2011-07-12 20:54:02 -0400 (Tue, 12 Jul 2011)
New Revision: 1086
Modified:
trust/trunk/jbossws/src/main/java/org/picketlink/trust/jbossws/handler/SAML2Handler.java
Log:
PLFED-171: add group principal to subject if roles
Modified: trust/trunk/jbossws/src/main/java/org/picketlink/trust/jbossws/handler/SAML2Handler.java
===================================================================
--- trust/trunk/jbossws/src/main/java/org/picketlink/trust/jbossws/handler/SAML2Handler.java 2011-07-13 00:52:18 UTC (rev 1085)
+++ trust/trunk/jbossws/src/main/java/org/picketlink/trust/jbossws/handler/SAML2Handler.java 2011-07-13 00:54:02 UTC (rev 1086)
@@ -54,6 +54,9 @@
*/
public class SAML2Handler extends AbstractPicketLinkTrustHandler
{
+ //The system property key that can be set to determine the keys under which the roles may be in the assertion
+ public static final String ROLE_KEY_SYS_PROP = "picketlink.rolekey";
+
/**
* Retrieves the SAML assertion from the SOAP payload and lets invocation go to JAAS for validation.
*/
@@ -104,7 +107,7 @@
if(assertionType != null )
{
List<String> roleKeys = new ArrayList<String>();
- String roleKey = SecurityActions.getSystemProperty("picketlink.rolekey", "Role");
+ String roleKey = SecurityActions.getSystemProperty( ROLE_KEY_SYS_PROP, "Role");
if(StringUtil.isNotNull(roleKey))
{
roleKeys.addAll(StringUtil.tokenize(roleKey));
More information about the picketlink-commits
mailing list