Author: anil.saldhana(a)jboss.com Date: 2010-08-09 15:52:02 -0400 (Mon, 09 Aug 2010) New Revision: 348 Modified: federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPWebBrowserSSOValve.java Log: add in a method on the tomcat IDP valve to ignore attribute generation including roles Modified: federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPWebBrowserSSOValve.java =================================================================== --- federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPWebBrowserSSOValve.java 2010-08-09 14:28:40 UTC (rev 347) +++ federation/trunk/picketlink-bindings/src/main/java/org/picketlink/identity/federation/bindings/tomcat/idp/IDPWebBrowserSSOValve.java 2010-08-09 19:52:02 UTC (rev 348) @@ -169,6 +169,16 @@ { this.ignoreIncomingSignatures = ignoreIncomingSignature; } + + /** + * IDP should not do any attributes such as generation of roles etc + * @param ignoreAttributes + */ + public void setIgnoreAttributesGeneration(Boolean ignoreAttributes) + { + if( ignoreAttributes == Boolean.TRUE ) + this.attribManager = null; + } public Boolean getSignOutgoingMessages() { @@ -902,7 +912,7 @@ ClassLoader tcl = SecurityActions.getContextClassLoader(); AttributeManager delegate = (AttributeManager) tcl.loadClass(attributeManager).newInstance(); this.attribManager.setDelegate(delegate); - } + } } catch (Exception e) {