You are viewing a plain text version of this content. The canonical link for it is here.
Posted to java-dev@axis.apache.org by Plamena Chongova <pc...@gmail.com> on 2008/01/31 14:37:51 UTC
Full SAML scenario
Hi all!
I'm looking at SAML mechanism in Rampart and Rahas, but I couldn't find a
complete sample for this. I found one sample how a client can issue a SAML
token, but I didn't understand how this client can use the token to
authenticate to another service.
I'll appreciate any help and suggestions.
Thanks,
Plamena
Re: Full SAML scenario
Posted by Plamena Chongova <pc...@gmail.com>.
Hi Nandana,
I still have some questions about how the SAML works. I'm interested in how
the trust is established between the STS and the other web services, which
will use the SAML token. If I want to put my own issuer and the STS is
hosted on a different address than the other web services what should I
configure?
Thanks!
Regards, Plamena
Hi Nandana,
I have a question about the SAML
On Fri, Feb 8, 2008 at 9:53 AM, Plamena Chongova <pc...@gmail.com>
wrote:
> Hi Nandana,
>
> I had some older jars in the runtime. I have put everything from the
> nightly build and the sample works properly.
> Thanks!
>
> Regards, Plamena
>
> On Feb 7, 2008 3:26 PM, Nandana Mihindukulasooriya <
> nandana.cse@gmail.com> wrote:
>
> > Hi Plamena,
> > Are you using the latest Rampart jars ? I just checked the
> > sample with the
> > trunk and was able to successfully get the SAML token and call the
> > service.
> > These samples pick the Rampart jars from the AXIS2/lib directory. So
> > latest
> > Rampart jars have to be there in the Axis2 lib.
> > Can you please post the complete stack trace so we can get an idea
> > what
> > is going on ?
> >
> > regards,
> > /nandana
> >
> > On Feb 7, 2008 6:14 PM, Plamena Chongova <pc...@gmail.com> wrote:
> > > Hi Nandana,
> > >
> > > Thanks for the reply. I tried the sample.
> > > The client issues and receives SAML token, but when tries to
> > authenticate to
> > > the other service fails with exception:
> > > Referenced security token could not be retrieved. (Reference
> > > "#EncKeyId-13044493")
> > > As far as I saw the services.xml file contains the STS service policy
> > and
> > > the trusted service policy and they are deployed together.
> > > Do you have any idea where is the problem?
> > >
> > > Regards, Plamena
> > >
> > >
> > >
> > > On Feb 1, 2008 6:50 PM, Nandana Mihindukulasooriya <
> > nandana.cse@gmail.com>
> > > wrote:
> > >
> > > > Hi Plamena,
> > > >
> > > >
> > > >
> > > >
> > > > > I found one sample how a client can issue a SAML token, but I
> > didn't
> > > understand how this client can use the token to authenticate to
> > another
> > > service.
> > > >
> > > > Please take a look at the Rampart Sample 05 [1] . Client [2] is
> > now
> > > extended to use the obtained SAML token to do the authentication.
> > > > Thanks,
> > > > Nandana
> > > >
> > > > [1] -
> > >
> > https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/
> > > > [2] -
> > >
> > https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/src/org/apache/rampart/samples/policy/sample05/Client.java
> > > >
> > > > --
> > > > Nandana Mihindukulasooriya
> > > > Software Engineer
> > > > WSO2 inc.
> > > >
> > > > http://nandana83.blogspot.com/
> > > > http://nandanasm.wordpress.com/
> > >
> > >
> >
> >
> > http://nandana83.blogspot.com/
> > http://nandanasm.wordpress.com/
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: axis-dev-unsubscribe@ws.apache.org
> > For additional commands, e-mail: axis-dev-help@ws.apache.org
> >
> >
>
Re: Full SAML scenario
Posted by Plamena Chongova <pc...@gmail.com>.
Hi Nandana,
I had some older jars in the runtime. I have put everything from the nightly
build and the sample works properly.
Thanks!
Regards, Plamena
On Feb 7, 2008 3:26 PM, Nandana Mihindukulasooriya <na...@gmail.com>
wrote:
> Hi Plamena,
> Are you using the latest Rampart jars ? I just checked the
> sample with the
> trunk and was able to successfully get the SAML token and call the
> service.
> These samples pick the Rampart jars from the AXIS2/lib directory. So
> latest
> Rampart jars have to be there in the Axis2 lib.
> Can you please post the complete stack trace so we can get an idea
> what
> is going on ?
>
> regards,
> /nandana
>
> On Feb 7, 2008 6:14 PM, Plamena Chongova <pc...@gmail.com> wrote:
> > Hi Nandana,
> >
> > Thanks for the reply. I tried the sample.
> > The client issues and receives SAML token, but when tries to
> authenticate to
> > the other service fails with exception:
> > Referenced security token could not be retrieved. (Reference
> > "#EncKeyId-13044493")
> > As far as I saw the services.xml file contains the STS service policy
> and
> > the trusted service policy and they are deployed together.
> > Do you have any idea where is the problem?
> >
> > Regards, Plamena
> >
> >
> >
> > On Feb 1, 2008 6:50 PM, Nandana Mihindukulasooriya <
> nandana.cse@gmail.com>
> > wrote:
> >
> > > Hi Plamena,
> > >
> > >
> > >
> > >
> > > > I found one sample how a client can issue a SAML token, but I
> didn't
> > understand how this client can use the token to authenticate to another
> > service.
> > >
> > > Please take a look at the Rampart Sample 05 [1] . Client [2] is now
> > extended to use the obtained SAML token to do the authentication.
> > > Thanks,
> > > Nandana
> > >
> > > [1] -
> >
> https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/
> > > [2] -
> >
> https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/src/org/apache/rampart/samples/policy/sample05/Client.java
> > >
> > > --
> > > Nandana Mihindukulasooriya
> > > Software Engineer
> > > WSO2 inc.
> > >
> > > http://nandana83.blogspot.com/
> > > http://nandanasm.wordpress.com/
> >
> >
>
>
> http://nandana83.blogspot.com/
> http://nandanasm.wordpress.com/
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: axis-dev-unsubscribe@ws.apache.org
> For additional commands, e-mail: axis-dev-help@ws.apache.org
>
>
Re: Full SAML scenario
Posted by Nandana Mihindukulasooriya <na...@gmail.com>.
Hi Plamena,
Are you using the latest Rampart jars ? I just checked the
sample with the
trunk and was able to successfully get the SAML token and call the service.
These samples pick the Rampart jars from the AXIS2/lib directory. So latest
Rampart jars have to be there in the Axis2 lib.
Can you please post the complete stack trace so we can get an idea what
is going on ?
regards,
/nandana
On Feb 7, 2008 6:14 PM, Plamena Chongova <pc...@gmail.com> wrote:
> Hi Nandana,
>
> Thanks for the reply. I tried the sample.
> The client issues and receives SAML token, but when tries to authenticate to
> the other service fails with exception:
> Referenced security token could not be retrieved. (Reference
> "#EncKeyId-13044493")
> As far as I saw the services.xml file contains the STS service policy and
> the trusted service policy and they are deployed together.
> Do you have any idea where is the problem?
>
> Regards, Plamena
>
>
>
> On Feb 1, 2008 6:50 PM, Nandana Mihindukulasooriya <na...@gmail.com>
> wrote:
>
> > Hi Plamena,
> >
> >
> >
> >
> > > I found one sample how a client can issue a SAML token, but I didn't
> understand how this client can use the token to authenticate to another
> service.
> >
> > Please take a look at the Rampart Sample 05 [1] . Client [2] is now
> extended to use the obtained SAML token to do the authentication.
> > Thanks,
> > Nandana
> >
> > [1] -
> https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/
> > [2] -
> https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/src/org/apache/rampart/samples/policy/sample05/Client.java
> >
> > --
> > Nandana Mihindukulasooriya
> > Software Engineer
> > WSO2 inc.
> >
> > http://nandana83.blogspot.com/
> > http://nandanasm.wordpress.com/
>
>
http://nandana83.blogspot.com/
http://nandanasm.wordpress.com/
---------------------------------------------------------------------
To unsubscribe, e-mail: axis-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: axis-dev-help@ws.apache.org
Re: Full SAML scenario
Posted by Plamena Chongova <pc...@gmail.com>.
Hi Nandana,
Thanks for the reply. I tried the sample.
The client issues and receives SAML token, but when tries to authenticate to
the other service fails with exception:
Referenced security token could not be retrieved. (Reference
"#EncKeyId-13044493")
As far as I saw the services.xml file contains the STS service policy and
the trusted service policy and they are deployed together.
Do you have any idea where is the problem?
Regards, Plamena
On Feb 1, 2008 6:50 PM, Nandana Mihindukulasooriya <na...@gmail.com>
wrote:
> Hi Plamena,
>
> I found one sample how a client can issue a SAML token, but I didn't
> > understand how this client can use the token to authenticate to another
> > service.
>
>
> Please take a look at the Rampart Sample 05 [1] . Client [2] is now
> extended to use the obtained SAML token to do the authentication.
> Thanks,
> Nandana
>
> [1] -
> https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/
> [2] -
> https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/src/org/apache/rampart/samples/policy/sample05/Client.java
>
> --
> Nandana Mihindukulasooriya
> Software Engineer
> WSO2 inc.
>
> http://nandana83.blogspot.com/
> http://nandanasm.wordpress.com/
Re: Full SAML scenario
Posted by Nandana Mihindukulasooriya <na...@gmail.com>.
Hi Plamena,
I found one sample how a client can issue a SAML token, but I didn't
> understand how this client can use the token to authenticate to another
> service.
Please take a look at the Rampart Sample 05 [1] . Client [2] is now
extended to use the obtained SAML token to do the authentication.
Thanks,
Nandana
[1] -
https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/
[2] -
https://svn.apache.org/repos/asf/webservices/rampart/trunk/java/modules/rampart-samples/policy/sample05/src/org/apache/rampart/samples/policy/sample05/Client.java
--
Nandana Mihindukulasooriya
Software Engineer
WSO2 inc.
http://nandana83.blogspot.com/
http://nandanasm.wordpress.com/