Log in to follow, share, and participate in this community.
Thread Relationship User - Role LDAP not working
Relationship User - Role LDAP not workingHey guys, I'm currently implementing a ldap integration for one of my systems. I've checked the quickstart guide which works quite fine. I can query users (logging in works, logout works as well) and I can que...
What license is PicketLink released under?Hi I'm looking at using PicketLink in one of my projects but have noticed there seems to be some inconsistency as to what license PicketLink is released under and this will affect whether I can use it in my pr...
Thread InclusiveNamespaces PrefixList – proper way to set it up?
InclusiveNamespaces PrefixList – proper way to set it up?[PicketLink 2.1.10.Final] When creating SAML token, I need to set up some namespaces to be in "InclusiveNamespaces PrefixList". They should be preserved by canonisation. I do not know how to tell picketlink t...
Problem when programmatically do SSOHello all, What I am trying to do is logging into my web application by java code I build my system base on idp.war and sale.war version 2.0.3 on JBoss eap 6.4. Then I made below changes ...
SAML metadata generation in PicketLink SPHi I'm trying to configure a PicketLink SP and a OpenAM IdP. It seems OpenAM requires a SAML metadata file. But I'm unable to figure out how to generate a metadata file from a PicketLink SP configurati...
Thread Replacement for Seam Security's RunAsOperation (impersonate)
Replacement for Seam Security's RunAsOperation (impersonate)I'm trying to migrate a Seam 2.3 application to CDI+PicketLink, but I can't find a replacement for Seam's RunAsOperation in PicketLink. (Shiro has a similar function in Subject.runAs, but only for authenticated ...
Strange behavior on query for rolesI'm initializing my security model with this class: web-budget/SecurityInitializer.java at experimental · arthurgregorio/web-budget · GitHub But when i query for roles on line #78 if is the first cyc...
Thread Keystore and key passwords in service provider's picketlink.xml
Keystore and key passwords in service provider's picketlink.xmlHello all, how do you protect the passwords for key store and signing and encryption keys in service provider's picketlink.xml (see https://docs.jboss.org/author/display/PLINK/Service+Provider+Configuration#Se...
PicketLink Configuration: Mask passwordPicketLink Federation configuration for the STS and/or the SAML IDP/SP include passwords. Based on PLFED-73, we should be able to mask the password in the configuration files. This should be available as...
PicketLink Federation + IDM APII'm using PicketLink for SSO (Federation). I implemented the IP module according to the quickstart using authentication via JAAS + HTML Form. However, I need to customize login flow and I would like to use JSF with Pi...
External SSO authentication on TomcatHello all, I am using PicketLink to implement a Service Provider that uses an external Saml Based SSO to authenticate users. I want to protect my web pages like this: The user connects to https://myapp.com T...
Mixing Two-Factor with FederationWe currently have a SAML 2.0 infrastructure using PicketLink Federation 2.1.7, running on JBoss AS7.2. We have several SP applications tied in, including PicketLink enabled Java web applications, .NET applicatio...
Thread Securing EJB call is causing an seperate entitymanager to fail
Securing EJB call is causing an seperate entitymanager to failHello Has anyone run into this issue when securing EJB calls using picketlink annotations. Any help would be much appreciated.. When applying a security annotation to an EJB method it correctly s...
Problem in EJB module with picketLinkHello, i have just training with pocketlink. I have tried to make simple getting started app. All worked ok. Then i tried to make simble stateless local EJB bean. I created standart netbeans Enterprise maven arche...
PicketLink as a Federation Provider (FP)If I wanted to use PicketLink as a Federation Provider, federating Security Tokens from other STSs (non PicketLink) and enhancing them with claims based on the configuration in a local IdP is that possible?