SAML metadata generation in PicketLink SPHi I'm trying to configure a PicketLink SP and a OpenAM IdP. It seems OpenAM requires a SAML metadata file. But I'm unable to figure out how to generate a metadata file from a PicketLink SP configurati...
Thread Replacement for Seam Security's RunAsOperation (impersonate)
Replacement for Seam Security's RunAsOperation (impersonate)I'm trying to migrate a Seam 2.3 application to CDI+PicketLink, but I can't find a replacement for Seam's RunAsOperation in PicketLink. (Shiro has a similar function in Subject.runAs, but only for authenticated ...
Strange behavior on query for rolesI'm initializing my security model with this class: web-budget/SecurityInitializer.java at experimental · arthurgregorio/web-budget · GitHub But when i query for roles on line #78 if is the first cyc...
Thread Keystore and key passwords in service provider's picketlink.xml
Keystore and key passwords in service provider's picketlink.xmlHello all, how do you protect the passwords for key store and signing and encryption keys in service provider's picketlink.xml (see https://docs.jboss.org/author/display/PLINK/Service+Provider+Configuration#Se...
PicketLink Federation + IDM APII'm using PicketLink for SSO (Federation). I implemented the IP module according to the quickstart using authentication via JAAS + HTML Form. However, I need to customize login flow and I would like to use JSF with Pi...
External SSO authentication on TomcatHello all, I am using PicketLink to implement a Service Provider that uses an external Saml Based SSO to authenticate users. I want to protect my web pages like this: The user connects to https://myapp.com T...
Mixing Two-Factor with FederationWe currently have a SAML 2.0 infrastructure using PicketLink Federation 2.1.7, running on JBoss AS7.2. We have several SP applications tied in, including PicketLink enabled Java web applications, .NET applicatio...
Thread Securing EJB call is causing an seperate entitymanager to fail
Securing EJB call is causing an seperate entitymanager to failHello Has anyone run into this issue when securing EJB calls using picketlink annotations. Any help would be much appreciated.. When applying a security annotation to an EJB method it correctly s...
Problem in EJB module with picketLinkHello, i have just training with pocketlink. I have tried to make simple getting started app. All worked ok. Then i tried to make simble stateless local EJB bean. I created standart netbeans Enterprise maven arche...
PicketLink as a Federation Provider (FP)If I wanted to use PicketLink as a Federation Provider, federating Security Tokens from other STSs (non PicketLink) and enhancing them with claims based on the configuration in a local IdP is that possible?
PicketLink User InterfaceMy customer has inherited an application that is integrated with PicketLink but now they want to separate the IdP from the SP. Is there a packaged user interface that would allow them to administer the IdP (create use...
Thread Picketlink SessionManager - is it new feature?
Picketlink SessionManager - is it new feature?Hello, We are using Picketlink for a long time, and all went well. But now when we tried to upgrade Picketlink to new version 2.7.0 we faced with unusual behavior. We expected, that the user can be abl...
Thread Problems Creating Custom Group with Child Reference
Problems Creating Custom Group with Child ReferenceHey guys, Today, I'm writing a tool in my application to allow users to create their own groups. The tool must be a page with a tree structure which allows the users to create a group, and then add child group...
HTTP Patch methodHello Has anyone run into the problem getting @PATCH working with Picketlink? From what I can see in org.picketlink.http.HttpMethod HTTP PATCH does not appear to be a supported method type. Are...