Hi people!
I'm searching for a simple example of a Web Application, hosted in Tomcat, acting as the Service Provider, that consumes a non-java based Identity Provider using Passive Secure Token Service, producing a SAML 2.0/1.x token. I have a Passive STS Identity Provider, running with Microsoft Geneva Framework, and it's run OK with ASP.NET web apps. I want to configure a one page JSP application, so if the user navigates to that page, his browser will be redirected to my .NET STS Passive web app, and then, back to the JSP web app, take the STS token, using the include name claim as the principal. But I can't figure out what technology to explore if the Service Provider Web Application is a Tomcat/Java-based one. All examples I found, refer to Identity Provider and Service Provider built on the same technology. Any custom authenticator that consumes an STS token? If there is no example in Tomcat, any other option? JBoss? JBoss Identity on Tomcat? Angel "Java" Lopez http://www.ajlopez.com http://twitter.com/ajlopez
