Details

    • Type: Feature Request
    • Status: Resolved (View Workflow)
    • Priority: Major
    • Resolution: Duplicate Issue
    • Affects Version/s: jbossws-cxf-5.2.1.Final
    • Fix Version/s: None
    • Component/s: jbossws-cxf
    • Labels:
      None

      Description

      SAML Token Principal can be propagated to the EJB layer, which right now we are not seeing.
      Here are the results we see,

      16:23:43,521 INFO [stdout] (default task-9) class org.apache.wss4j.common.principal.SAMLTokenPrincipalImpl
      16:23:43,522 INFO [stdout] (default task-9) subjectName
      16:23:58,617 INFO [stdout] (default task-9) class org.jboss.security.SimplePrincipal
      16:24:15,751 INFO [stdout] (default task-9) anonymous

      CXF code isn't creating the Subject for the security context in a way that the EAP, or JEE containers, can understand. For UsernameToken type authentication this is done through org.jboss.wsf.stack.cxf.security.authentication.SubjectCreatingInterceptor, but I'm unsure if this applies to SAML tokens.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  jim.ma Jim Ma
                  Reporter:
                  vrlgohel Viral Gohel
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  6 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: