On 05/11/14 20:24, rareddy wrote:
User in this case is already authenticated against a domain. If start with
what you are saying then I am re-authenticating. Which may be OK or not. I
see some folks call this protocol transformation like here
https://www.youtube.com/watch?v=GJyyVjzQ4a0 at 50 min mark.
Does Webclient needs to be written such that it can handle re-direction
between IDP and act as SP, and provide call back URL that IDP can call back,
basically I am implementing the more or less like
org.apache.cxf.rs.security.saml.sso.SamlRedirectBindingFilter?
Can you please describe your case again ? I'm a bit confused.
As far as I understand you have a JAX-RS server with a user being
authenticated, so I'm guessing your server (filter or the actual
application code) has an active Subject.
This server now needs to call out to a 3rd party or external JAX-RS
server which is protected with SAML somehow...
Is it right ? Can you provide more details. I don't have enough info to
suggest anything useful...
Sergey
Ramesh..
--
View this message in context:
http://cxf.547215.n5.nabble.com/JAX-RS-Client-to-handle-SAML-OAuth2-in-SSO-tp5750699p5750767.html
Sent from the cxf-user mailing list archive at Nabble.com.
