Hi, Sample 08 shipped with Rampart distribution demonstrates how to obtain a SAML token from Secure Token Service backed by rampart-trust module. You can find this sample at http://svn.apache.org/repos/asf/axis/axis2/java/rampart/trunk/modules/rampart-samples/policy/sample08/
Also, WSO2 Identity Server <http://wso2.com/products/identity-server/> - an open source solution - ships a STS (based on Rampart) which is easy to configure and use. Thanks, Hasini. On Thu, Aug 30, 2012 at 5:43 PM, abdelrahman almahmoud < [email protected]> wrote: > Hi > > > I have a simple web service and a client which are working fine, I > want to have the client request a token from a third party and present > it to the service, then have the service validate it. > The problem is finding an easy to set-up STS that would issue SAML > tokens, I was looking at openAM and it seemed complex for a quick > set-up and test. I found this link [1] which suggests that rampart has > STS functionality but I couldn't find more information on it. I simply > want something that would verify the user using username/password or > password digest and then give him a unique token that contains the > secret key > > I would then extract the secret key on the service side after I > validate the token. I will handle renewing the key manually by > deriving them from other elements > > Can someone point me to more information about the STS in rampart, or > tell me if its possible to do this with it > > > Thanks > > [1] http://axis.apache.org/axis2/java/rampart/setting-up-sts.html > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
