Hello everybody,

recently I successfully set up an Identity Provider application and a couple of Service Provider applications applying instructions found here: PicketLink.

It really worked and I'm able to logon to the first SP application and access the second one without further authentication.

Now I'd like to propagate user identity to the EJB layer. I found this doc (Protecting EJB Endpoints - PicketLink - Project Documentation Editor) that seems to be what I need.

However, SAML2STSLoginModule appears to be unavailable for WildFly, whereas it is there for EAP.

Why is this login module missing? Has this module been deprecated or or it is simply not yet available? Is there a replacement or an alternate approach to achieve identity propagation to the EJB layer?

Thank you very much in advance.

Best regards,

Stefano Altavilla