Hi, Quoting [EMAIL PROTECTED]:
Anyway, you say you'd recommend SAML, but you also say you prefer WS-Trust. I'm a bit confused - I thought SAML was a language for representing users and their permissions, whereas WS-Trust was for exchanging security tokens. In other words, I thought these addressed two different classes of use cases.
You can use WS-Trust to exchange SAML2.0 tokens, via the RequestTokenType element. If you're able to have a WS-Trust response using axis2, let me know. I'm trying to implement this: I created the necessary header but I'm not able to set it in the SOAP response (not using opensaml, since the examples are not so good, and I don't know where to start). I use rampart for signing and setting timestamps, but it does not work now for me (see the previous post). Cheers, ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
