Investigate integration of FORM auth with a SAML style identity provider ------------------------------------------------------------------------ Key: JBAS-2482 URL: http://jira.jboss.com/jira/browse/JBAS-2482 Project: JBoss Application Server Issue Type: Sub-task Security Level: Public(Everyone can see) Components: Web (Tomcat) service, Security Reporter: Scott M Stark Assigned To: Anil Saldhana Fix For: JBossAS-5.0.1.CR1 We need to investigate how one can update the FORM authentication layer to delegate the authentication to an identity provider. Issues include: 1. authentication of the form username/password 2. authentication of an existing login from another app using SSO 3. reauthentication if the web session outlives the IDP token validity 4. propagation of the identity to other secure components.