You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Oliver Wulff (JIRA)" <ji...@apache.org> on 2012/08/08 23:32:20 UTC

[jira] [Created] (CXF-4464) Support ClaimsHandler per realm

Oliver Wulff created CXF-4464:
---------------------------------

             Summary: Support ClaimsHandler per realm
                 Key: CXF-4464
                 URL: https://issues.apache.org/jira/browse/CXF-4464
             Project: CXF
          Issue Type: New Feature
          Components: Services
    Affects Versions: 2.6.1
            Reporter: Oliver Wulff


A ClaimsHandler is independent of the STS realm.

Example: The LdapClaimsHandler is configured to support the claims firstname and lastname. The principal (ws-sec header, onbehalfof, actas) is mapped to the STS realm. But you must use another principal to access the claims data from the LDAP directory. Thus a claimshandler must know which principal of which realm must be used to retrieve the claims.

Therefore, the ClaimsHandler must provide the information in which realm he is applicable thus the ClaimsManager can map the identity before calling retrieveClaimValues. 

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira