[jboss-dev-forums] [Design of JBoss Identity] - Re: SAML Assertions (JBossESB)
jeff.yuchang
do-not-reply at jboss.com
Mon Nov 10 22:02:52 EST 2008
"jkurtz.wa at gmail.com" wrote :
|
| That is a great idea. It might be a good idea to do a white paper on this. There is not much out there for guiding SOA Security, this could be a start.
| John
When you say the SOA security, Dan has composed a good section about the JBossESB security feature at: http://anonsvn.jboss.org/repos/labs/labs/jbossesb/branches/JBESB_4_4_GA_CP/product/docs/ServicesGuide.odt (Chapter 13).
For the filter, we can see it from http://www.jboss.org/jbossesb/docs/4.4.GA/manuals/html/ProgrammersGuide.html.
The security feature has NOT been included in the JBossESB 4.4 release. It will be in the ESB 4.5 release. So if we want to use filter to implement the security feature, then I think it might be better we based on the ESB 4.4 code base. But at the same time, refer to 4_4_GA_CP branch, as to see what needs to be done. (Include the requirement of encrypting the authentication request).
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4188332#4188332
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4188332
More information about the jboss-dev-forums
mailing list