What I would like to have is the following:
1) SSO authentication using SAML for multiple applications
2) Identity object in each application that contains additional user properties (roles, groups, group roles,..) - those properties are loaded from existing database.
I can achieve the first point using the the Picketlink IDP and SP quickstarts (https://github.com/jboss-developer/jboss-picketlink-quickstarts/ )
The problem is however that all I get here is the user that is stored in request ( request.getUserPrincipal().getName() ).
How can I get the Identity object ( org.picketlink.Identity ) associated with the SAML authenticated user and read additional info about the user from database? I only have username and roles in the SAML token, I want additional user info to be loaded separately.
What I want is to be able to use SAML authentication and Identity Manager (read-only on SP side) at the same time, but I have not found any example of that kind on the web.