Thanks for the response Prabath. I'd just about given up. I've already havethe custom PBAC PDP. Its a bare servlet with no particular security around itself. That can come later.
What I've been unable to do is find specific documents that describe how to integrate it in your environment. Writing a "custom mediator" to me means an XSLT transform and I'm quite sure you don't mean that. What I need is specific step by step instructions on how to "simply write a custom mediator to call your custom PDP.". On Thu, Sep 16, 2010 at 1:56 PM, Prabath Siriwardana <[email protected]>wrote: > Hi Brad; > > The Entitlement mediator [PEP] comes with WSO2 ESB is coupled with the WSO2 > IS implementation. > > As per your requirement you need to use a custom PDP - in that case you can > simply write a custom mediator to call your custom PDP... > > Thanks & regards; > -Prabath > On Tue, Sep 14, 2010 at 7:20 PM, Brad Cox <[email protected]> wrote: > >> I've been trying to use WS02 for a PBAC implementation project, based on >> the claimed XACML support (albeit "experimental", which I now realize means >> a demo web page instead of anything really usable). I'm starting to >> seriously question this decision, being unable to find usable documentation >> that relates to what I need to know. I'm hoping someone here can provide >> that based on this description of what I need to do. >> >> I have a working PBAC PDP. I want to use WS02 to host resources guarded by >> WSO2's usual PEP. But I want to disconnect the link to WSO2's internal PEP >> and connect instead to my PBAC PDP, which is presumably but not necessarily >> on another machine (possibly WSO2, possibly glassfish, does that matter?). >> SAML-based connectivity eventually, if not initially. >> >> Can someone please provide specific instructions for how to install a >> custom PDP and connect it to what's there now via SAML? Please be very >> specific. >> >> Thanks! >> >> BTW: Can someone fix the blog at >> http://blog.facilelogin.com/2009/05/identity-server-20-as-xacml-engine.html >> so >> that the figures actually appear? None of the recipes are usable as it >> stands now. >> >> -- >> Cell: 703-594-1883 >> Blog: http://bradjcox.blogspot.com >> Web: http://virtualschool.edu >> Manassas VA 20111 >> >> >> _______________________________________________ >> Esb-java-user mailing list >> [email protected] >> https://mail.wso2.org/cgi-bin/mailman/listinfo/esb-java-user >> >> > > > -- > Thanks & Regards, > Prabath Siriwardena > > http://blog.facilelogin.com > http://RampartFAQ.com > > _______________________________________________ > Esb-java-user mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/esb-java-user > > -- Cell: 703-594-1883 Blog: http://bradjcox.blogspot.com Web: http://virtualschool.edu Manassas VA 20111
_______________________________________________ Esb-java-user mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/esb-java-user
