You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by bu...@apache.org on 2012/05/07 10:05:02 UTC
svn commit: r816276 - in /websites/production/cxf/content:
cache/main.pageCache fediz.html
Author: buildbot
Date: Mon May 7 08:05:02 2012
New Revision: 816276
Log:
Production update by buildbot for cxf
Modified:
websites/production/cxf/content/cache/main.pageCache
websites/production/cxf/content/fediz.html
Modified: websites/production/cxf/content/cache/main.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/cxf/content/fediz.html
==============================================================================
--- websites/production/cxf/content/fediz.html (original)
+++ websites/production/cxf/content/fediz.html Mon May 7 08:05:02 2012
@@ -136,11 +136,11 @@ Apache CXF -- Fediz
<td height="100%">
<!-- Content -->
<div class="wiki-content">
-<div id="ConfluenceContent"><h1><a shape="rect" name="Fediz-ApacheFediz%3AAnOpenSourceWebSecurityFramework"></a>Apache Fediz: An Open-Source Web Security Framework</h1>
+<div id="ConfluenceContent"><h1><a shape="rect" name="Fediz-ApacheCXFFediz%3AAnOpenSourceWebSecurityFramework"></a>Apache CXF Fediz: An Open-Source Web Security Framework</h1>
<h2><a shape="rect" name="Fediz-Overview"></a>Overview</h2>
-<p>Apache Fediz is an open source security framework. Fediz helps you secure your web applications and delegates security enforcement to the underlying application server. Authentication is externalized from your web application to an identity provider which is a dedicated server component. The supported standard is WS-Federation 1.2 Passive Requestor Profile. Fediz supports Claims based Access control beyond Role Based Access Control (RBAC).</p>
+<p>Apache CXF Fediz is a subproject of CXF. Fediz helps you to secure your web applications and delegates security enforcement to the underlying application server. Authentication is externalized from your web application to an identity provider which is a dedicated server component. The supported standard is WS-Federation 1.2 Passive Requestor Profile. Fediz supports Claims based Access control beyond Role Based Access Control (RBAC).</p>
<h2><a shape="rect" name="Fediz-News"></a>News</h2>
@@ -149,7 +149,38 @@ Apache CXF -- Fediz
<h2><a shape="rect" name="Fediz-Features"></a>Features</h2>
+<p>The following features are supported by the Fediz plugin 1.0</p>
+<ul><li>WS-Federation 1.1/1.2</li><li>SAML 1.1/2.0 Tokens</li><li>Custom token support</li><li>Publish WS-Federation Metadata document</li><li>Role information encoded as AttributeStatement in SAML 1.1/2.0 tokens</li><li>Claims information provided by FederationPrincipal interface</li></ul>
+
+
+<p>The following features are planned for the next release:</p>
+<ul><li>Support for Jetty and JBoss</li><li>CXF plugin</li><li>Support for encrypted SAML tokens</li><li>Support for Holder-Of-Key SubjectConfirmationMethod</li><li>"Resource IDP" support for Fediz IDP</li><li>support for other protocols like SAML-P, OAuth</li></ul>
+
+
+<h2><a shape="rect" name="Fediz-Distribution"></a>Distribution</h2>
+
+<p>tbd</p>
+
+<h2><a shape="rect" name="Fediz-Samples"></a>Samples</h2>
+
+<p>The examples directory contains two sample projects:</p>
+
+<div class="table-wrap">
+<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1" class="confluenceTh"> Sample </th><th colspan="1" rowspan="1" class="confluenceTh"> Description </th><th colspan="1" rowspan="1" class="confluenceTh"> Doc Page </th></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> <b>simpleWebapp</b> </td><td colspan="1" rowspan="1" class="confluenceTd"> a simple web application which is protected by the Fediz IDP. The FederationServlet illustrates how to get security information using the standard APIs. </td><td colspan="1" rowspan="1" class="confluenceTd"> <a shape="rect" class="external-link" href="http://owulff.blogspot.com/2011/11/configure-tomcat-for-federation-part.html" rel="nofollow">Blog </a> </td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"> <b>wsclientWebapp</b> </td><td colspan="1" rowspan="1" class="confluenceTd"> a protected web application which calls a web service protected by the Fediz STS. The FederationServlet illustrates how to s
ecurely call a web service. </td><td colspan="1" rowspan="1" class="confluenceTd"> <a shape="rect" class="external-link" href="http://owulff.blogspot.com/2012/04/sso-across-web-applications-and-web_16.html" rel="nofollow">Blog </a> </td></tr></tbody></table>
</div>
+
+
+<h2><a shape="rect" name="Fediz-Sources"></a>Sources</h2>
+
+<p>Check out the code from <a shape="rect" class="external-link" href="http://svn.apache.org/repos/asf/cxf/fediz/trunk">http://svn.apache.org/repos/asf/cxf/fediz/trunk</a><br clear="none">
+Then build & test using:</p>
+<div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent">
+<pre class="code-java">
+mvn clean install
+</pre>
+</div></div>
+
+<p>Note: you need to use Maven 2.0.9 or newer and have the following environment variable set: <tt>MAVEN_OPTS=-Xmx512m</tt></p></div>
</div>
<!-- Content -->
</td>