This content has been marked as final.
Show 1 reply
-
1. Re: SSO from Web App to Web Service
pcraveiro Oct 3, 2014 9:04 AM (in response to huo)Hey Robert,
I think PicketLink Federation can also help you in #3. It supports WS-Trust, providing a Security Token Service (STS) that you can use to issue/renew/cance/validate security tokens.
PicketLink also provides some JAX-WS Handlers that you can use in your SOAP-based service to consume the SAML assertion previously issued by an IdP. In this case, the handler will validate it against the STS. If everything is fine, the user's security context is restored from the SAML assertion.
References:
https://developer.jboss.org/wiki/PicketLinkSTS-SAMLProfile
SAML WS Integration with PicketLink STS