Description

    The first stage is covered by SWITCHYARD-725.

    The second stage involves adding an additional SecurityPolicy handler that injects a policy decision point into the handler chain. The idea here is that the gateway might not be able to make an assertion w/r/t security, but the message/context contains security details that can be hooked into an Identity Manager/Provider to make the appropriate assertions. This is where something like SAML comes in. This handler would sit before the generic policy handler (which matches required policy against provided policy) and provide the capability of adding security assertions that a gateway was not capable of handling.

      Gliffy Diagrams

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                dward David Ward
                Reporter:
                dward David Ward
              • Votes:
                1 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: