Hello,
I want to bring authentification into my services. The services are
behind several wso2 esbs in several domains which haven´t always a
connection to each other. So a centralized usermanager or database will
not be enough for me.
How is the best approach to do that? I have read about several
ws-standars like ws-federation, but I have not seen any solution besides
the tango-project of sun. But I am more on the axis2-train :-)
My ideas are to inject some user values in the soap-message (username
and password) and encrypt the soap-message. The esb will take these
values and proofs it by using the wso2 usermanager. After a successfull
authentification I have to indicate that they other esbs and services
itself don´t need to proof it again. I don´t want to make a new
authentification at all intermediate stations, so in my eyes a flag in
the soap message to say "Already authenticated" is enough, or?
I have to write an own mediation than, right? Or is there a solution out
of the box?
What´s about the identity solution? Does it fit to my requirements?
Any other ideas in general for doing that?
I have seen following documentation:
http://wso2.org/library/2065
http://wso2.org/blog/dimuthul/2789
Any other documents available?
How can I embed the usermanager into the wso2 esb?
I have only seen the integration into an axis2 service...
Thanks in advance,
Jens
_______________________________________________
Esb-java-user mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/esb-java-user
