Hi All, I have attached an initial implementation of the STS provider framework and the Issue operation. The eclipse project is attached to the following Jira: https://issues.apache.org/jira/browse/CXF-1940
I still need to refractor the code with regards to logging, exception tracing, checkstyles etc. I would request you all to provide an initial feedback while I proceed with the code cleanup. Thanks! Anubhav On 2/23/11 1:46 PM, "Anubhav Sharma" <[email protected]> wrote: Hello Everyone, I would like to contribute an STS provider framework to the CXF project. The idea would be to implement a provider based STS service, the obvious reason being that it can support both WS Trust 1.3 and 1.4 versions. The invoke method of this provider would convert the request into corresponding JAXB objects and delegate the call to the right implementation. The implementation of operations like Issue, Renew etc. would be configured in spring. The users would just need to implement their business logic for these operations and configure the implementation class in spring. As an example I would also like to contribute a sample implementation for the Issue operation. This sample would accept UsernameToken and X509Token as inputs, use local file system for authentication and return back a SAML Token. I would propose to support both, SAML 1.1 and SAML 2.0. In the RST, user can use TokenType attribute to request either a SAML 1.1 or 2.0 token. This would give the CXF users an opportunity to use and test the sts client against the sample STS implementation, extend the STS with their business implementations and in future we can enhance STS with a more sophisticated and complete implementation. Would appreciate your views and inputs on this. Cheers, Anubhav
