You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@cxf.apache.org by Oliver Wulff <ow...@talend.com> on 2013/08/20 21:14:16 UTC

Release Fediz 1.1.0...

Hi there

I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of new features have been implemented like support for more containers like Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz IDP is the support to integrate with other trusted IDPs like ADFS or another Fediz IDP instance which is connected to another security domain.

The following items are pending for 1.1.0:
- Feedback and final testing for FEDIZ-3 from Thierry
- FEDIZ-34 for Karaf deployment
- FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)
- FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough time)
- update wiki

If you have any other thoughts or objections, let us know.

Thanks
Oli




------

Oliver Wulff

Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
Solution Architect
http://coders.talend.com

<http://coders.talend.com>Talend Application Integration Division http://www.talend.com

Re: Release Fediz 1.1.0...

Posted by Sergey Beryozkin <sb...@gmail.com>.

Hi Oli
On 22/08/13 23:25, Oliver Wulff wrote:
> Hi Sergey
>
> OK, let's do it for 1.2.0 or maybe a patch release. I'd like to get some clean up in CXF with respect to security and move the samlp stuff to fediz and integrate fediz into jaxrs. Then you get support for SAML-P and WS-Federation for JAX-RS and web applications.

Sounds good. I'll work on Fediz-47 for 1.2.0 or even for a patch release 
if preferred, sure.

Re moving a SAML-P module to Fediz: I'm fine with that too, but I guess
I'd prefer us getting Fediz updated first to support SAML-P at the IDP 
level, so that for example, I can update a demo where Shibboleth IDP is 
used to also work with Fediz IDP, and then consider moving the SP 
support module to Fediz; this is the reason I wanted to keep the module 
in CXF at a time when we worked with Colm on it, so that CXF RS 
endpoints can work with all IDPs...

Thanks, Sergey
>
> Thanks
> Oli
>
>
>
> ------
>
> Oliver Wulff
>
> Blog: http://owulff.blogspot.com
> Solution Architect
> http://coders.talend.com
>
> Talend Application Integration Division http://www.talend.com
>
> ________________________________________
> From: Sergey Beryozkin [sberyozkin@gmail.com]
> Sent: 21 August 2013 14:54
> To: dev@cxf.apache.org
> Subject: Re: Release Fediz 1.1.0...
>
> Hi Oli
>
> On 20/08/13 22:14, Oliver Wulff wrote:
>>
>> Hi there
>>
>> I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of new features have been implemented like support for more containers like Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz IDP is the support to integrate with other trusted IDPs like ADFS or another Fediz IDP instance which is connected to another security domain.
>>
>> The following items are pending for 1.1.0:
>> - Feedback and final testing for FEDIZ-3 from Thierry
>> - FEDIZ-34 for Karaf deployment
>> - FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)
>
> First of all, my apologies I haven't delivered on it yet. I'm committed
> to doing the work but I haven't had a chance to do the work yet, apart
> from experimenting with the demos :-)
>
> Oli, if you think it is important for 1.1.0 then I'll try to give it a
> go in a week or so, I'd like to try and complete as much as possible of
> JAX-RS 2.0 fluent Client API work asap too, but I can allocate a couple
> of days to Fediz-46 and see how far will I go...
>
> If it can wait till 1.2.0 then it will give a bot more time and if yes I
> will commit to delivering this feature in time for Fediz 1.2.0, for sure
> :-)
>
> Thanks, Sergey
>> - FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough time)
>> - update wiki
>>
>> If you have any other thoughts or objections, let us know.
>>
>> Thanks
>> Oli
>>
>>
>>
>>
>> ------
>>
>> Oliver Wulff
>>
>> Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
>> Solution Architect
>> http://coders.talend.com
>>
>> <http://coders.talend.com>Talend Application Integration Division http://www.talend.com
>>
>

RE: Release Fediz 1.1.0...

Posted by Oliver Wulff <ow...@talend.com>.

Hi Sergey

OK, let's do it for 1.2.0 or maybe a patch release. I'd like to get some clean up in CXF with respect to security and move the samlp stuff to fediz and integrate fediz into jaxrs. Then you get support for SAML-P and WS-Federation for JAX-RS and web applications.

Thanks
Oli

------

Oliver Wulff

Blog: http://owulff.blogspot.com
Solution Architect
http://coders.talend.com

Talend Application Integration Division http://www.talend.com

________________________________________
From: Sergey Beryozkin [sberyozkin@gmail.com]
Sent: 21 August 2013 14:54
To: dev@cxf.apache.org
Subject: Re: Release Fediz 1.1.0...

Hi Oli

On 20/08/13 22:14, Oliver Wulff wrote:
>
> Hi there
>
> I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of new features have been implemented like support for more containers like Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz IDP is the support to integrate with other trusted IDPs like ADFS or another Fediz IDP instance which is connected to another security domain.
>
> The following items are pending for 1.1.0:
> - Feedback and final testing for FEDIZ-3 from Thierry
> - FEDIZ-34 for Karaf deployment
> - FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)

First of all, my apologies I haven't delivered on it yet. I'm committed
to doing the work but I haven't had a chance to do the work yet, apart
from experimenting with the demos :-)

Oli, if you think it is important for 1.1.0 then I'll try to give it a
go in a week or so, I'd like to try and complete as much as possible of
JAX-RS 2.0 fluent Client API work asap too, but I can allocate a couple
of days to Fediz-46 and see how far will I go...

If it can wait till 1.2.0 then it will give a bot more time and if yes I
will commit to delivering this feature in time for Fediz 1.2.0, for sure
:-)

Thanks, Sergey
> - FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough time)
> - update wiki
>
> If you have any other thoughts or objections, let us know.
>
> Thanks
> Oli
>
>
>
>
> ------
>
> Oliver Wulff
>
> Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
> Solution Architect
> http://coders.talend.com
>
> <http://coders.talend.com>Talend Application Integration Division http://www.talend.com
>

Re: Release Fediz 1.1.0...

Posted by Sergey Beryozkin <sb...@gmail.com>.

Hi Oli

On 20/08/13 22:14, Oliver Wulff wrote:
>
> Hi there
>
> I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of new features have been implemented like support for more containers like Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz IDP is the support to integrate with other trusted IDPs like ADFS or another Fediz IDP instance which is connected to another security domain.
>
> The following items are pending for 1.1.0:
> - Feedback and final testing for FEDIZ-3 from Thierry
> - FEDIZ-34 for Karaf deployment
> - FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)

First of all, my apologies I haven't delivered on it yet. I'm committed 
to doing the work but I haven't had a chance to do the work yet, apart 
from experimenting with the demos :-)

Oli, if you think it is important for 1.1.0 then I'll try to give it a 
go in a week or so, I'd like to try and complete as much as possible of 
JAX-RS 2.0 fluent Client API work asap too, but I can allocate a couple 
of days to Fediz-46 and see how far will I go...

If it can wait till 1.2.0 then it will give a bot more time and if yes I 
will commit to delivering this feature in time for Fediz 1.2.0, for sure 
:-)

Thanks, Sergey
> - FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough time)
> - update wiki
>
> If you have any other thoughts or objections, let us know.
>
> Thanks
> Oli
>
>
>
>
> ------
>
> Oliver Wulff
>
> Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
> Solution Architect
> http://coders.talend.com
>
> <http://coders.talend.com>Talend Application Integration Division http://www.talend.com
>

Re: Release Fediz 1.1.0...

Posted by Colm O hEigeartaigh <co...@apache.org>.

+1. I have some more work to do on the Holder-of-Key task, but I'll try to
complete it by the end of this week.

Colm.


On Tue, Aug 20, 2013 at 8:14 PM, Oliver Wulff <ow...@talend.com> wrote:

>
> Hi there
>
> I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of
> new features have been implemented like support for more containers like
> Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with
> respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz
> IDP is the support to integrate with other trusted IDPs like ADFS or
> another Fediz IDP instance which is connected to another security domain.
>
> The following items are pending for 1.1.0:
> - Feedback and final testing for FEDIZ-3 from Thierry
> - FEDIZ-34 for Karaf deployment
> - FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)
> - FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough
> time)
> - update wiki
>
> If you have any other thoughts or objections, let us know.
>
> Thanks
> Oli
>
>
>
>
> ------
>
> Oliver Wulff
>
> Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
> Solution Architect
> http://coders.talend.com
>
> <http://coders.talend.com>Talend Application Integration Division
> http://www.talend.com
>



-- 
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com

RE: Release Fediz 1.1.0...

Posted by Oliver Wulff <ow...@talend.com>.

Hi there

As CXF 2.7.7 is available I plan on doing the 1.0.0 release end of this week. If you have any other changes or anything that need to get in, let me know.

Thanks
Oli

________________________________________
From: Beucher Thierry [thierry.beucher@worldline.com]
Sent: 28 August 2013 10:50
To: dev@cxf.apache.org
Subject: RE: Release Fediz 1.1.0...

Hi Oli,

I am currently working on Jetty issue, I'm on the right track ...



-----Message d'origine-----
De : Oliver Wulff [mailto:owulff@talend.com]
Envoyé : mercredi 28 août 2013 09:29
À : dev@cxf.apache.org
Objet : RE: Release Fediz 1.1.0...


Hi Thierry

I've tested the patch and it works when you deploy the IDP in Tomcat (standalone, systests) but the jetty systests fail. I've updated JIRA.

Can you look into this?

BTW, I'm working on FEDIZ-15. The Federation Metadata document should be available via the following url:
https://<host>:<port>/<context>/FederationMetadata/2007-06/FederationMetadata.xml

What is your recommendation to plug that into spring web flow?

Thanks
Oli

------

Oliver Wulff

Blog: http://owulff.blogspot.com
Solution Architect
http://coders.talend.com

Talend Application Integration Division http://www.talend.com

________________________________________
From: Beucher Thierry [thierry.beucher@worldline.com]
Sent: 27 August 2013 15:30
To: dev@cxf.apache.org
Subject: TR: Release Fediz 1.1.0...

Hi Oli,

I added the patch about "wctx" to FEDIZ-3 ...

Thanks

_____________________________________________
De : Beucher Thierry
Envoyé : jeudi 22 août 2013 10:50
À : 'dev@cxf.apache.org'
Objet : RE: Release Fediz 1.1.0...


Hi all,

I am currently checking the last trunk state, focusing myself on FEDIZ-3 feature.
I must also providing a short patch about two points raised by Oliver :

*       If I choose realm B (redirect to remote idp happens), the wctx is used. The form posted to the rp contains the wctx with the same value. After the wctx has been posted to the IDP, it must be cleared.
*       If you now clear the cookie with rp, you get redirected and the wctx is still sent to the RP but empty this time.

I will do everything to have it ready this weekend.

Thanks

-----Message d'origine-----
De : Oliver Wulff [mailto:owulff@talend.com] Envoyé : mardi 20 août 2013 21:14 À : dev@cxf.apache.org<ma...@cxf.apache.org>
Objet : Release Fediz 1.1.0...


Hi there

I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of new features have been implemented like support for more containers like Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz IDP is the support to integrate with other trusted IDPs like ADFS or another Fediz IDP instance which is connected to another security domain.

The following items are pending for 1.1.0:
- Feedback and final testing for FEDIZ-3 from Thierry
- FEDIZ-34 for Karaf deployment
- FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)
- FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough time)
- update wiki

If you have any other thoughts or objections, let us know.

Thanks
Oli




------

Oliver Wulff

Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
Solution Architect
http://coders.talend.com

<http://coders.talend.com>Talend Application Integration Division http://www.talend.com



  ________________________________

Ce message et les pièces jointes sont confidentiels et réservés à l'usage exclusif de ses destinataires. Il peut également être protégé par le secret professionnel. Si vous recevez ce message par erreur, merci d'en avertir immédiatement l'expéditeur et de le détruire. L'intégrité du message ne pouvant être assurée sur Internet, la responsabilité de Worldline ne pourra être recherchée quant au contenu de ce message. Bien que les meilleurs efforts soient faits pour maintenir cette transmission exempte de tout virus, l'expéditeur ne donne aucune garantie à cet égard et sa responsabilité ne saurait être recherchée pour tout dommage résultant d'un virus transmis.

This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Worldline liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted.


Ce message et les pièces jointes sont confidentiels et réservés à l'usage exclusif de ses destinataires. Il peut également être protégé par le secret professionnel. Si vous recevez ce message par erreur, merci d'en avertir immédiatement l'expéditeur et de le détruire. L'intégrité du message ne pouvant être assurée sur Internet, la responsabilité de Worldline ne pourra être recherchée quant au contenu de ce message. Bien que les meilleurs efforts soient faits pour maintenir cette transmission exempte de tout virus, l'expéditeur ne donne aucune garantie à cet égard et sa responsabilité ne saurait être recherchée pour tout dommage résultant d'un virus transmis.

This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Worldline liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted.

RE: Release Fediz 1.1.0...

Posted by Beucher Thierry <th...@worldline.com>.

Hi Oli,

I am currently working on Jetty issue, I'm on the right track ...



-----Message d'origine-----
De : Oliver Wulff [mailto:owulff@talend.com]
Envoyé : mercredi 28 août 2013 09:29
À : dev@cxf.apache.org
Objet : RE: Release Fediz 1.1.0...


Hi Thierry

I've tested the patch and it works when you deploy the IDP in Tomcat (standalone, systests) but the jetty systests fail. I've updated JIRA.

Can you look into this?

BTW, I'm working on FEDIZ-15. The Federation Metadata document should be available via the following url:
https://<host>:<port>/<context>/FederationMetadata/2007-06/FederationMetadata.xml

What is your recommendation to plug that into spring web flow?

Thanks
Oli

------

Oliver Wulff

Blog: http://owulff.blogspot.com
Solution Architect
http://coders.talend.com

Talend Application Integration Division http://www.talend.com

________________________________________
From: Beucher Thierry [thierry.beucher@worldline.com]
Sent: 27 August 2013 15:30
To: dev@cxf.apache.org
Subject: TR: Release Fediz 1.1.0...

Hi Oli,

I added the patch about "wctx" to FEDIZ-3 ...

Thanks

_____________________________________________
De : Beucher Thierry
Envoyé : jeudi 22 août 2013 10:50
À : 'dev@cxf.apache.org'
Objet : RE: Release Fediz 1.1.0...


Hi all,

I am currently checking the last trunk state, focusing myself on FEDIZ-3 feature.
I must also providing a short patch about two points raised by Oliver :

*       If I choose realm B (redirect to remote idp happens), the wctx is used. The form posted to the rp contains the wctx with the same value. After the wctx has been posted to the IDP, it must be cleared.
*       If you now clear the cookie with rp, you get redirected and the wctx is still sent to the RP but empty this time.

I will do everything to have it ready this weekend.

Thanks

-----Message d'origine-----
De : Oliver Wulff [mailto:owulff@talend.com] Envoyé : mardi 20 août 2013 21:14 À : dev@cxf.apache.org<ma...@cxf.apache.org>
Objet : Release Fediz 1.1.0...


Hi there

I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of new features have been implemented like support for more containers like Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz IDP is the support to integrate with other trusted IDPs like ADFS or another Fediz IDP instance which is connected to another security domain.

The following items are pending for 1.1.0:
- Feedback and final testing for FEDIZ-3 from Thierry
- FEDIZ-34 for Karaf deployment
- FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)
- FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough time)
- update wiki

If you have any other thoughts or objections, let us know.

Thanks
Oli




------

Oliver Wulff

Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
Solution Architect
http://coders.talend.com

<http://coders.talend.com>Talend Application Integration Division http://www.talend.com



  ________________________________

Ce message et les pièces jointes sont confidentiels et réservés à l'usage exclusif de ses destinataires. Il peut également être protégé par le secret professionnel. Si vous recevez ce message par erreur, merci d'en avertir immédiatement l'expéditeur et de le détruire. L'intégrité du message ne pouvant être assurée sur Internet, la responsabilité de Worldline ne pourra être recherchée quant au contenu de ce message. Bien que les meilleurs efforts soient faits pour maintenir cette transmission exempte de tout virus, l'expéditeur ne donne aucune garantie à cet égard et sa responsabilité ne saurait être recherchée pour tout dommage résultant d'un virus transmis.

This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Worldline liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted.


Ce message et les pièces jointes sont confidentiels et réservés à l'usage exclusif de ses destinataires. Il peut également être protégé par le secret professionnel. Si vous recevez ce message par erreur, merci d'en avertir immédiatement l'expéditeur et de le détruire. L'intégrité du message ne pouvant être assurée sur Internet, la responsabilité de Worldline ne pourra être recherchée quant au contenu de ce message. Bien que les meilleurs efforts soient faits pour maintenir cette transmission exempte de tout virus, l'expéditeur ne donne aucune garantie à cet égard et sa responsabilité ne saurait être recherchée pour tout dommage résultant d'un virus transmis.

This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Worldline liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted.

RE: Release Fediz 1.1.0...

Posted by Oliver Wulff <ow...@talend.com>.

Hi Thierry

I've tested the patch and it works when you deploy the IDP in Tomcat (standalone, systests) but the jetty systests fail. I've updated JIRA.

Can you look into this?

BTW, I'm working on FEDIZ-15. The Federation Metadata document should be available via the following url:
https://<host>:<port>/<context>/FederationMetadata/2007-06/FederationMetadata.xml

What is your recommendation to plug that into spring web flow?

Thanks
Oli

------

Oliver Wulff

Blog: http://owulff.blogspot.com
Solution Architect
http://coders.talend.com

Talend Application Integration Division http://www.talend.com

________________________________________
From: Beucher Thierry [thierry.beucher@worldline.com]
Sent: 27 August 2013 15:30
To: dev@cxf.apache.org
Subject: TR: Release Fediz 1.1.0...

Hi Oli,

I added the patch about "wctx" to FEDIZ-3 ...

Thanks

_____________________________________________
De : Beucher Thierry
Envoyé : jeudi 22 août 2013 10:50
À : 'dev@cxf.apache.org'
Objet : RE: Release Fediz 1.1.0...


Hi all,

I am currently checking the last trunk state, focusing myself on FEDIZ-3 feature.
I must also providing a short patch about two points raised by Oliver :

*       If I choose realm B (redirect to remote idp happens), the wctx is used. The form posted to the rp contains the wctx with the same value. After the wctx has been posted to the IDP, it must be cleared.
*       If you now clear the cookie with rp, you get redirected and the wctx is still sent to the RP but empty this time.

I will do everything to have it ready this weekend.

Thanks

-----Message d'origine-----
De : Oliver Wulff [mailto:owulff@talend.com]
Envoyé : mardi 20 août 2013 21:14
À : dev@cxf.apache.org<ma...@cxf.apache.org>
Objet : Release Fediz 1.1.0...


Hi there

I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of new features have been implemented like support for more containers like Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz IDP is the support to integrate with other trusted IDPs like ADFS or another Fediz IDP instance which is connected to another security domain.

The following items are pending for 1.1.0:
- Feedback and final testing for FEDIZ-3 from Thierry
- FEDIZ-34 for Karaf deployment
- FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)
- FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough time)
- update wiki

If you have any other thoughts or objections, let us know.

Thanks
Oli




------

Oliver Wulff

Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
Solution Architect
http://coders.talend.com

<http://coders.talend.com>Talend Application Integration Division http://www.talend.com



  ________________________________

Ce message et les pièces jointes sont confidentiels et réservés à l'usage exclusif de ses destinataires. Il peut également être protégé par le secret professionnel. Si vous recevez ce message par erreur, merci d'en avertir immédiatement l'expéditeur et de le détruire. L'intégrité du message ne pouvant être assurée sur Internet, la responsabilité de Worldline ne pourra être recherchée quant au contenu de ce message. Bien que les meilleurs efforts soient faits pour maintenir cette transmission exempte de tout virus, l'expéditeur ne donne aucune garantie à cet égard et sa responsabilité ne saurait être recherchée pour tout dommage résultant d'un virus transmis.

This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Worldline liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted.

TR: Release Fediz 1.1.0...

Posted by Beucher Thierry <th...@worldline.com>.

Hi Oli,

I added the patch about "wctx" to FEDIZ-3 ...

Thanks

_____________________________________________
De : Beucher Thierry
Envoyé : jeudi 22 août 2013 10:50
À : 'dev@cxf.apache.org'
Objet : RE: Release Fediz 1.1.0...

Hi all,

I am currently checking the last trunk state, focusing myself on FEDIZ-3 feature.
I must also providing a short patch about two points raised by Oliver :

* If I choose realm B (redirect to remote idp happens), the wctx is used. The form posted to the rp contains the wctx with the same value. After the wctx has been posted to the IDP, it must be cleared.
* If you now clear the cookie with rp, you get redirected and the wctx is still sent to the RP but empty this time.

I will do everything to have it ready this weekend.

Thanks

-----Message d'origine-----
De : Oliver Wulff [mailto:owulff@talend.com]
Envoyé : mardi 20 août 2013 21:14
À : dev@cxf.apache.org<ma...@cxf.apache.org>
Objet : Release Fediz 1.1.0...

Hi there

I'd like to release CXF Fediz 1.1.0 within the next two weeks. A lot of new features have been implemented like support for more containers like Jetty, Websphere 7/8 and Spring Security 2/3 and minor extensions with respect to support SAML HoK. The main new feature (FEDIZ-3) for the Fediz IDP is the support to integrate with other trusted IDPs like ADFS or another Fediz IDP instance which is connected to another security domain.

The following items are pending for 1.1.0:
- Feedback and final testing for FEDIZ-3 from Thierry
- FEDIZ-34 for Karaf deployment
- FEDIZ-46 for CXF JAX-RS support (Sergey, can you work on this?)
- FEDIZ-15, IDP supports WS-Federation Metadata document (if I got enough time)
- update wiki

If you have any other thoughts or objections, let us know.

Thanks
Oli

------

Oliver Wulff

Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
Solution Architect
http://coders.talend.com

<http://coders.talend.com>Talend Application Integration Division http://www.talend.com

________________________________

Ce message et les pièces jointes sont confidentiels et réservés à l'usage exclusif de ses destinataires. Il peut également être protégé par le secret professionnel. Si vous recevez ce message par erreur, merci d'en avertir immédiatement l'expéditeur et de le détruire. L'intégrité du message ne pouvant être assurée sur Internet, la responsabilité de Worldline ne pourra être recherchée quant au contenu de ce message. Bien que les meilleurs efforts soient faits pour maintenir cette transmission exempte de tout virus, l'expéditeur ne donne aucune garantie à cet égard et sa responsabilité ne saurait être recherchée pour tout dommage résultant d'un virus transmis.

This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Worldline liability cannot be triggered for the message content. Although the sender endeavours to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted.

RE: Release Fediz 1.1.0...

Posted by Beucher Thierry <th...@worldline.com>.

Hi all,

I am currently checking the last trunk state, focusing myself on FEDIZ-3 feature.
I must also providing a short patch about two points raised by Oliver :

I will do everything to have it ready this weekend.

Thanks

-----Message d'origine-----
De : Oliver Wulff [mailto:owulff@talend.com]
Envoyé : mardi 20 août 2013 21:14
À : dev@cxf.apache.org
Objet : Release Fediz 1.1.0...

Hi there

If you have any other thoughts or objections, let us know.

Thanks
Oli

------

Oliver Wulff

Blog: http://owulff.blogspot.com<http://owulff.blogspot.com/>
Solution Architect
http://coders.talend.com

<http://coders.talend.com>Talend Application Integration Division http://www.talend.com

________________________________