I would appreciate some comments on whether my use of WSS4J in the
following environment is feasible:
I have a client application which uses Axis 1.2 to invoke a web service.
This service is deployed to IBM Websphere. I wish to use SAML security
tokens to invoke the web service.
I understand that it's necessary to obtain security assertions from an
identity provider, however the WSS4J examples don't clarify how this can
be done. Does an API exist to create query messages? For example,
suppose I want to send the following request
<samlp:Request
MajorVersion="1" MinorVersion="0"
RequestID="128.14.234.20.12345678"
IssueInstant="2001-12-03T10:02:00Z">
<samlp:RespondWith>saml:AuthenticationStatement</samlp:RespondWith>
<ds:Signature>...</ds:Signature>
<samlp:AuthenticationQuery>
<saml:Subject>
<saml:NameIdentifier
SecurityDomain="Company.com"
Name="jothy" />
</saml:Subject>
</samlp:AuthenticationQuery>
</samlp:Request>
Apologies if I've overlooked something in the docs, but the examples are
centered around deploying a web service to Axis, which is not the case
in my situation.
Thanks.
Andrew.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
