You are viewing a plain text version of this content. The canonical link for it is here.

Posted to rampart-dev@ws.apache.org by Nandana Mihindukulasooriya <na...@gmail.com> on 2009/07/24 14:57:58 UTC

Re: Support for SAML 2.0 in Apache Rampart

Hi Thilina,
       How is the progress on this ? Will we be able to include this in
Rampart 1.5 release ?

thanks,
Nandana

On Thu, Jun 18, 2009 at 9:46 AM, Thilina Mahesh Buddhika <
thilinamb@gmail.com> wrote:

> Hi all,
>
> At the moment Rampart only supports SAML 1.0, but not SAML 2.0. SAML 2.0
> comes with a lot of improvements compared to SAML 1.*, and it is heavily
> used in providing SSO and federated identities.
>
> So I would like to implement the SAML 2.0 support in Rampart. I have
> already
> started working on this. The JIRA that was created for this new feature can
> be found at [1].
>
> Thanks.
>
> /thilina.
>
> [1] - https://issues.apache.org/jira/browse/RAMPART-231
>
> E-Mail         : thilinamb@gmail.com
> I blog here : http://thilinamb.com
>

Re: Support for SAML 2.0 in Apache Rampart

Posted by Thilina Mahesh Buddhika <th...@gmail.com>.

Hi Daniel,

SAML 2.0 support will be available very soon in Rampart, and hopefully it
will be included in the Rampart 1.5 release. Currently I am working on
samples/tests for SAML2.0 support. Stay tuned to this thread. I will update
it as soon as the code is available in the Rampart code base.

Do you want to validate a SAML 2.0 assertion ? If so that is not possible
with the existing Rampart code. But if you want to validate a SAML1.1/1.0
assertion, it is possible to use SAMLTokenProcessor class available in the
org.apache.ws.security.processor package in WSS4J. Rampart makes use of that
class to validate SAML1.1 assertions. I have not encountered any usage of
SAMLTokenValidator class you mentioned.

Thanks.

best regards,
/thilina
E-Mail         : thilinamb@gmail.com
I blog here : http://thilinamb.com


On Tue, Jul 28, 2009 at 4:26 PM, Daniel Silva <da...@alert.pt> wrote:

> Hi,
>
> I'm developing a Web Service that needs to enforce access control based on
> the user (Subject/NameID) received on a SAML 2.0 Assertion.
> I see that rampart doesn´t support SAML 2.0 yet and there is work already
> done by Thilina.
> I need to move forward on this... Is there anything I can do/use?
> What would be the steps to validate the SAML Assertion? Can I use
> SAMLTokenValidator as example?
>
> BTW, when will be rampart 1.5 released?
>
> Thank you very much.
>
> Best regards,
>
> Daniel Silva
>
> This e-mail is privileged, confidential and contains private information.
> Any reading, retention, distribution or copying of this communication by any
> person other than its intended recipient is prohibited.
>
>
> -----Original Message-----
> From: Thilina Mahesh Buddhika [mailto:thilinamb@gmail.com]
> Sent: sábado, 25 de Julho de 2009 12:27
> To: rampart-dev@ws.apache.org
> Subject: Re: Support for SAML 2.0 in Apache Rampart
>
> hi Nandana,
>
> I have completed implementing a SAML2 Issuer and the validator. Only a
> small
> work is remaining to complete this feature.
>
> Hopefully we will be able to finish this before the relase.
>
> Thanks.
> /thilina
>
> E-Mail         : thilinamb@gmail.com
> I blog here : http://thilinamb.com
>
>
> On Fri, Jul 24, 2009 at 6:27 PM, Nandana Mihindukulasooriya <
> nandana.cse@gmail.com> wrote:
>
> > Hi Thilina,
> >       How is the progress on this ? Will we be able to include this in
> > Rampart 1.5 release ?
> >
> > thanks,
> > Nandana
> >
> > On Thu, Jun 18, 2009 at 9:46 AM, Thilina Mahesh Buddhika <
> > thilinamb@gmail.com> wrote:
> >
> > > Hi all,
> > >
> > > At the moment Rampart only supports SAML 1.0, but not SAML 2.0. SAML
> 2.0
> > > comes with a lot of improvements compared to SAML 1.*, and it is
> heavily
> > > used in providing SSO and federated identities.
> > >
> > > So I would like to implement the SAML 2.0 support in Rampart. I have
> > > already
> > > started working on this. The JIRA that was created for this new feature
> > can
> > > be found at [1].
> > >
> > > Thanks.
> > >
> > > /thilina.
> > >
> > > [1] - https://issues.apache.org/jira/browse/RAMPART-231
> > >
> > > E-Mail         : thilinamb@gmail.com
> > > I blog here : http://thilinamb.com
> > >
> >
>

RE: Support for SAML 2.0 in Apache Rampart

Posted by Daniel Silva <da...@alert.pt>.

Hi,

I'm developing a Web Service that needs to enforce access control based on the user (Subject/NameID) received on a SAML 2.0 Assertion.
I see that rampart doesn´t support SAML 2.0 yet and there is work already done by Thilina.
I need to move forward on this... Is there anything I can do/use?
What would be the steps to validate the SAML Assertion? Can I use SAMLTokenValidator as example?

BTW, when will be rampart 1.5 released?

Thank you very much.

Best regards,

Daniel Silva

This e-mail is privileged, confidential and contains private information. Any reading, retention, distribution or copying of this communication by any person other than its intended recipient is prohibited.

-----Original Message-----
From: Thilina Mahesh Buddhika [mailto:thilinamb@gmail.com] 
Sent: sábado, 25 de Julho de 2009 12:27
To: rampart-dev@ws.apache.org
Subject: Re: Support for SAML 2.0 in Apache Rampart

hi Nandana,

I have completed implementing a SAML2 Issuer and the validator. Only a small
work is remaining to complete this feature.

Hopefully we will be able to finish this before the relase.

Thanks.
/thilina

E-Mail         : thilinamb@gmail.com
I blog here : http://thilinamb.com

On Fri, Jul 24, 2009 at 6:27 PM, Nandana Mihindukulasooriya <
nandana.cse@gmail.com> wrote:

> Hi Thilina,
>       How is the progress on this ? Will we be able to include this in
> Rampart 1.5 release ?
>
> thanks,
> Nandana
>
> On Thu, Jun 18, 2009 at 9:46 AM, Thilina Mahesh Buddhika <
> thilinamb@gmail.com> wrote:
>
> > Hi all,
> >
> > At the moment Rampart only supports SAML 1.0, but not SAML 2.0. SAML 2.0
> > comes with a lot of improvements compared to SAML 1.*, and it is heavily
> > used in providing SSO and federated identities.
> >
> > So I would like to implement the SAML 2.0 support in Rampart. I have
> > already
> > started working on this. The JIRA that was created for this new feature
> can
> > be found at [1].
> >
> > Thanks.
> >
> > /thilina.
> >
> > [1] - https://issues.apache.org/jira/browse/RAMPART-231
> >
> > E-Mail         : thilinamb@gmail.com
> > I blog here : http://thilinamb.com
> >
>

Re: Support for SAML 2.0 in Apache Rampart

Posted by Thilina Mahesh Buddhika <th...@gmail.com>.

hi Nandana,

I have completed implementing a SAML2 Issuer and the validator. Only a small
work is remaining to complete this feature.

Hopefully we will be able to finish this before the relase.

Thanks.
/thilina

E-Mail         : thilinamb@gmail.com
I blog here : http://thilinamb.com


On Fri, Jul 24, 2009 at 6:27 PM, Nandana Mihindukulasooriya <
nandana.cse@gmail.com> wrote:

> Hi Thilina,
>       How is the progress on this ? Will we be able to include this in
> Rampart 1.5 release ?
>
> thanks,
> Nandana
>
> On Thu, Jun 18, 2009 at 9:46 AM, Thilina Mahesh Buddhika <
> thilinamb@gmail.com> wrote:
>
> > Hi all,
> >
> > At the moment Rampart only supports SAML 1.0, but not SAML 2.0. SAML 2.0
> > comes with a lot of improvements compared to SAML 1.*, and it is heavily
> > used in providing SSO and federated identities.
> >
> > So I would like to implement the SAML 2.0 support in Rampart. I have
> > already
> > started working on this. The JIRA that was created for this new feature
> can
> > be found at [1].
> >
> > Thanks.
> >
> > /thilina.
> >
> > [1] - https://issues.apache.org/jira/browse/RAMPART-231
> >
> > E-Mail         : thilinamb@gmail.com
> > I blog here : http://thilinamb.com
> >
>