[jboss-dev-forums] [Design of JBoss Identity] - Re: WS-Trust Integration in JBoss Identity

Tuesday, 5 May 2009

Alessio,

anonymous wrote : I've done some basic research regarding CXF. First of all, let me
clarify there's currently nothing implemented in Native stack regarding ws-trust, so
the only way I see users using ws-trust is they call the STS you're implementing as
they would do with any other service endpoint. Then they manually create the messages for
the service provider, etc.
  | I think that's basically the Option A you wrote before, isn't it? 

Yes, that's it. We currently have no ws-trust integration code for the STS service, so
clients must call the STS just like they would need to do with any other service
endpoint.

Of course, this doesn't prevent us from implementing profiles for the STS (SAML,
Kerberos, X.509, etc), but we want to have this integrated with JBoss WS at some point. I
don't know how much work would be involved in implementing ws-trust (IssuedToken
policy assertions) support for the native stack, so we could probably start with the
JBossWS-CXF stack, even though it lacks server-side support for token validation.

What about JBossWS-Metro? Does it have support for ws-trust as of now?

View the original post :
http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4228726#...

Reply to the post :
http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-dev-forums] [Design of JBoss Identity] - Re: WS-Trust Integration in JBoss Identity