You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Jan Bernhardt (JIRA)" <ji...@apache.org> on 2014/07/25 21:38:38 UTC
[jira] [Created] (CXF-5907) Full claim mapping enforcement in
federated scenario
Jan Bernhardt created CXF-5907:
----------------------------------
Summary: Full claim mapping enforcement in federated scenario
Key: CXF-5907
URL: https://issues.apache.org/jira/browse/CXF-5907
Project: CXF
Issue Type: Bug
Components: STS
Affects Versions: 3.0.1, 2.7.12
Reporter: Jan Bernhardt
In case of federation claims can be mapped from one realm to another. Mapping can also include that some claim values are not relevant/desired for the target realm and thus should be omitted in the new token. However the {{org.apache.cxf.sts.claims.ClaimsManager}} enforces currently that all claim types contained in the request also must be included in the response by calling {{validateClaimValues(claims, targetClaims);}} at the end of the claim mapping. If some claim types have not been mapped to the new token, an exception is thrown. Therefore this check should be removed to allow mappings with different claim types in request and response.
--
This message was sent by Atlassian JIRA
(v6.2#6252)