If you are talking about POJO based WS, then instead of SAML2Handler, you need a combination of the WSAuthenticationHandler and WSAuthorizationHandler
Thanks, I had both the WSAuthenticationHandler and the WSAuthorizationHandler configured. I was having issues getting the userid out of the information. asking for the principal from the web service context produced a null result.
I was able to grab the user id by calling the SecurityAssociation class which stores the user information and groups.