The somewhat complex environment consist of the web application (on Tomcat) that is configured using a proxy Shibboleth SP (on an Apache) and this in turn is configured to request a SAML-assertion from the ADFS.
The user then calls a WS-trust enabled web service and this is where the CXF magic should happen. I believe the IssuedToken-Port on the ADFS is the correct one to use. The "blurry" part is how the connection made in WS-trust between the issued token and the existing assertion in the STS. -- View this message in context: http://cxf.547215.n5.nabble.com/Issue-with-WS-Trust-using-security-tokens-SAML-assertions-tp5744142p5745487.html Sent from the cxf-user mailing list archive at Nabble.com.
