You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Jan Bernhardt (JIRA)" <ji...@apache.org> on 2014/07/25 21:38:38 UTC

[jira] [Created] (CXF-5907) Full claim mapping enforcement in federated scenario

Jan Bernhardt created CXF-5907:
----------------------------------

             Summary: Full claim mapping enforcement in federated scenario
                 Key: CXF-5907
                 URL: https://issues.apache.org/jira/browse/CXF-5907
             Project: CXF
          Issue Type: Bug
          Components: STS
    Affects Versions: 3.0.1, 2.7.12
            Reporter: Jan Bernhardt


In case of federation claims can be mapped from one realm to another. Mapping can also include that some claim values are not relevant/desired for the target realm and thus should be omitted in the new token. However the {{org.apache.cxf.sts.claims.ClaimsManager}} enforces currently that all claim types contained in the request also must be included in the response by calling {{validateClaimValues(claims, targetClaims);}} at the end of the claim mapping. If some claim types have not been mapped to the new token, an exception is thrown. Therefore this check should be removed to allow mappings with different claim types in request and response.



--
This message was sent by Atlassian JIRA
(v6.2#6252)