You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2014/10/13 17:13:33 UTC

[jira] [Created] (CXF-6048) Support roles in the AuthPolicyValidatingInterceptor

Colm O hEigeartaigh created CXF-6048:
----------------------------------------

             Summary: Support roles in the AuthPolicyValidatingInterceptor
                 Key: CXF-6048
                 URL: https://issues.apache.org/jira/browse/CXF-6048
             Project: CXF
          Issue Type: Improvement
            Reporter: Colm O hEigeartaigh
            Assignee: Colm O hEigeartaigh
             Fix For: 3.0.3



The AuthPolicyValidatingInterceptor can be used to authenticate a HTTP B/A with a WSS4J Validator. For example, it could be combined with the STSTokenValidator to send the username/password to an STS for authentication. If the UsernameToken is transformed into a SAML Assertion, there is currently no way to set the roles in the security context



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)