JBoss STS - implement proof-of-possession token logic
-----------------------------------------------------
Key: JBID-138
URL:
https://jira.jboss.org/jira/browse/JBID-138
Project: JBoss Identity
Issue Type: Task
Components: Identity-Federation
Affects Versions: IDFED-1.0.0.alpha3
Reporter: Stefan Guilhen
Assignee: Stefan Guilhen
Fix For: IDFED-1.0.0.alpha4
The WS-Trust specification defines the concept of a proof-of-possession token, that is, a
token that can be used to verify the association between a security token and a subject.
We must add support for proof tokens, both symmetric (secret key) and assymetric
(certificate based). The proof must no only be included in the WS-Trust response, but also
in the security tokens being generated by each token provider.
Once this has been implemented, we must change the SAML20TokenProvider so it adds the
appropriate proof token to the assertion being created.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira