This content has been marked as final.
Show 2 replies
-
1. Re: struggling to integrate strong security in ESB
anil.saldhana Jun 9, 2008 2:16 PM (in response to ggiavelli)I do not know the specifics of JBoss ESB as I do not deal with that project directly. But from your description, what you really need for the SAML/Federation et.al is some layer that integrates with OpenSAML2.x
-
2. Re: struggling to integrate strong security in ESB
ggiavelli Jun 9, 2008 2:36 PM (in response to ggiavelli)"anil.saldhana@jboss.com" wrote:
I do not know the specifics of JBoss ESB as I do not deal with that project directly. But from your description, what you really need for the SAML/Federation et.al is some layer that integrates with OpenSAML2.x
I think the issue is that the BPEL orchestration engine, which typically is servlet calling web-services or other endpoints, is not WS-SE compliant yet in JBOSS or ESB. So you cant securely pass SAML headers in midst of a BPEL process. But I could be wrong.