SAML newbie here. Question: the ability to use SAML tokens for web service authentication and authorization is more of an issue with the capabilities of the JEE server, not the particular web service stack hosted on it (which, from the perspective of the Application server, is just a servlet), correct?
In other words, would I be able to use BEA WebLogic's SAML implementation (or any other app server's SAML implementation) to secure web services hosted using the CXFServlet, just like I could for any other servlet-based web service stack or web application[1]? Or is SAML something that is defined with respect to each web services stack, something that has to be separately and individually developed for each stack (CXF, Metro, Axis, Spring Web Services, etc.) independent of the app server? In other words again, could the following statement ever make sense: "You can use this app server's SAML implementation with a web service running with AxisServlet, but not CXFServlet"? Thanks, Glen [1] http://dev2dev.bea.com/pub/a/2006/12/sso-with-saml.html -- View this message in context: http://www.nabble.com/Using-SAML-w-CXF-and-WebLogic-Server-tp17020018p17020018.html Sent from the cxf-user mailing list archive at Nabble.com.
