Nov 20th, 2012, 05:31 AM
SAML extension integration with fediz IDP (sub-project of CXF)
we are struggling to build and integrate this extension with fediz IDP (which is part of CXF 2.6.1). which version of this SAML extension is stable and tested?
essentially we get the SAML token and process it, then we want the contents to be populated into the springframework.securityContext object. that way the SSO details will be available in both JSP and java code.
any help will be much appreciated
Dec 17th, 2012, 01:21 PM
Do you also use the fediz plugin within your application container? If yes, you could configure spring security as described in the example "preauth" as the container has already done the authentication or described here:
Dec 30th, 2012, 07:33 AM
The Spring Security SAML Extension uses SAML 2.0 Web SSO profiles which are not supported by Fediz IDP. This makes it impossible to achieve an easy to do integration between these two components. You might either use a different integration approach e.g. the one mentioned by Oli, or use a SAML-enabled IDP.