User in this case is already authenticated against a domain. If start with what you are saying then I am re-authenticating. Which may be OK or not. I see some folks call this protocol transformation like here https://www.youtube.com/watch?v=GJyyVjzQ4a0 at 50 min mark.
Does Webclient needs to be written such that it can handle re-direction between IDP and act as SP, and provide call back URL that IDP can call back, basically I am implementing the more or less like org.apache.cxf.rs.security.saml.sso.SamlRedirectBindingFilter? Ramesh.. -- View this message in context: http://cxf.547215.n5.nabble.com/JAX-RS-Client-to-handle-SAML-OAuth2-in-SSO-tp5750699p5750767.html Sent from the cxf-user mailing list archive at Nabble.com.
