Dear all, What is the best-practice approach for send authorization tokens for a system?, not only username and password, also other identity parameters, like the company, office etc, in a standar and interoperable way with other plataforms. The usernameToken of ws-security only support username and password, and no other parameters. Maybe SAML, but I have only two parts, not the identity provider.
Any ideas? Any help much appreciated
