Hi all I've initially committed the fediz component to sandbox some months back: http://svn.apache.org/viewvc/cxf/sandbox/fediz/
I'd like to come up with a roadmap for the fediz security component as proposed by Colm in the following mail thread: http://mail-archives.apache.org/mod_mbox/cxf-users/201203.mbox/ajax/%3CCAB8XdGAKVjb6EVJbccUWyA-nwZci_xKjZ1%3DHXK6XhCUeAjU1vQ%40mail.gmail.com%3E Roadmap ------------- 1st release (end of april): - Move configuration code to fediz-core - Publish WS-Federation Metadata document - Move SignIn request creation to fediz-core - support callback handlers for federation parameters: wauth, whr, 2nd release (end of june): - Create CXF plugin for JAX-RS - Create Websphere plugin based on TAI - Support encrypted token - Support the role of relying party IDP in mock - Support SAML HoK: either use UseKey element in RST or collocate STS in IDP thus STS has access to underlying transport - add layer to support other protocols like SAML-P, OAuth 3rd release (end of september): - create JBoss plugin - create Jetty plugin Do you see any other features? Thanks Oli ------ Oliver Wulff Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/> Solution Architect http://coders.talend.com <http://coders.talend.com>Talend Application Integration Division http://www.talend.com
