Log in to follow, share, and participate in this community.
Thread Security Token Server over http
Security Token Server over httpNow that we have validated the PicketLink STS WS-Trust bindings, it is now time to talk more. We have OpenID bindings in PicketLink that work on the http protocol. We also have demand for oauth suppo...
Thread PicketLink STS to send XACML Authorization Decisions
PicketLink STS to send XACML Authorization DecisionsIn PicketLink, we have demonstrated the return of XACML Authorization Decisions along with the authentication details back as SAML Assertions from the Identity Provider as part of SAML Web Browser based SSO. W...
Implementing IdentityStoreWe are currently trying to integrate GateIn portal with our own Role/Group framework. We store our roles and groups in the corporate entitlement framework. Therefore, we cannot just plug in the IDM LDAP or Hibernate I...
PicketLink IDM Feature Enhancement: Failed LoginsBolek, one of the feature requests at the JUDCon session on GateIn (driven by Thomas) was the addition of ability to handle failed logins configuration as part of the identity model for GateIn. I am just start...
Thread PicketLink STS WSDL problem with JBossWS CXF
PicketLink STS WSDL problem with JBossWS CXFI am currently testing the STS on top of our three JBossWS stacks and I'm having a problem to deploy the service on JBossWS CXF. Before jumping to the error I'll provide a bit of information about the STS itself. ...
New features for STS Login ModulesSTSIssuingLoginModule and STSValidatingLoginModule respectively issue and validate tokens being returned from STS. The concept of user roles is not an inherent features of this mechanism but various principals and rol...
Seam Security 3.0 and PicketLinkI've been discussing with Anil our plans for the Seam Security 3.0 release, in regards to integration with PicketLink IDM. We are adopting the API model defined by PicketLink in Seam, and I'm currently in the pr...
STS returning attributes (such as roles)(09:26:10 AM) anil: sguilhen: what is the simplest way by which the STS can return user attributes (09:26:21 AM) anil: sguilhen: with an additional AttributeProvider, maybe? (09:27:26 AM) sguilhen: anil: you mean attr...
Thread STS fails to validate tokens when JBossWS-Metro is used
STS fails to validate tokens when JBossWS-Metro is usedWhen PicketLink STS is deployed on top of JBossWS-Metro stack, all issued tokens fail the XML digital signature validation. The XML document is getting tempered after the token is generated and this of course causes t...
PicketLink RoadMap / Release Schedule / Nightly Build ?I have been following PicketLink for a few weeks now, experimenting, evaluating, etc. The state of the project has been a little frustrating because there is not a lot of documentation available yet, and there d...
Thread Authz: Default policy if no policy applicable
Authz: Default policy if no policy applicableHi I have a Authz use case like below: I have defined several policies for different resources. Here by resources, I mean classes. I.e., for different classes, I defined different permission rules. For example...
Need an authorization framework for DroolsHi, I am working on Drools security. Basically the requirement is an authorization framework that can be used to provide service level and method level security. It needs to support both role-based authorization and r...
PicketLink NegotiationDarran, I want to discuss the future of the workspace for the negotiation component. Current Work :- Currently negotiation exists in the security workspace. Going forward, I would like to pro...
Thread Exception occured, while running testcase for IDM
Exception occured, while running testcase for IDMI try to run the IDM test case. ended up with the following exception, org.picketlink.idm.common.exception.IdentityConfigurationException: Failed to build IdentitySessionFactory at org.picketl...
Seam OpenID/SAML IntegrationMarcel, lets keep this thread to discuss the seam openid/saml integration work that you have done. 1. Dependence on openid4java Even though openid4java is the prominent oss library for openid int...
AuthZ Dependencies and artifacts namingSohil, I want to provide some suggestions about the dependencies (jars) in the lib directory of the alpha1 release. anil@localhost:~/authz/code/authz-1.0.alpha1/lib$ ls
activation-1.1.1.jar ...
ADFS JBossWS and friendsI'm going to ask this as if it were a user question. Anil told me to post it here :-) Mainly I'm proposing a scenario. The basic requirement IE/Flash ----SOAP----JBoss----SOAP----AnotherJBoss---SOAP---NOTJBOSS Acti...
ip configuration instead of localhostHi , i am using the jboss 2.3.2 version .when i am deploying my application .its deployed fine .and when i am runiing the application through the localhost its working fine as http://localhost:8080/ComposerWAR/View?us...