You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Oliver Wulff (JIRA)" <ji...@apache.org> on 2014/02/20 10:30:23 UTC

[jira] [Created] (FEDIZ-72) Make Trusted IDP protocol customizable

Oliver Wulff created FEDIZ-72:
---------------------------------

             Summary: Make Trusted IDP protocol customizable
                 Key: FEDIZ-72
                 URL: https://issues.apache.org/jira/browse/FEDIZ-72
             Project: CXF-Fediz
          Issue Type: Improvement
          Components: IDP
    Affects Versions: 1.1.0
            Reporter: Oliver Wulff
            Assignee: Oliver Wulff


In release 1.1, the Fediz IDP doesn't support other protocols than WS-Federation for a Trusted IDP. Due to the usage of Spring Web Flow, the flow can still be customized but it has a bigger impact and later migration to new release require more effort.

This is a proposal to add support for custom protocols for Trusted IDPs:

- Introduce Interface "SSOProtocolBridge" which is able to transform a WS-Federation SignIn Request to another SignIn Request (ex. SAML-P AuthRequest) and to transform another SignIn Response (ex. SAML-P AuthResponse) to a WS-Federation SignIn Response.

- Processing logic is part of the main IDP web flow which chooses a protocol depending on the configuration of the TrustedIdp

- New protocol implementations can be found due to spring annotations scanning and injecting the beans in the core processing logic




--
This message was sent by Atlassian JIRA
(v6.1.5#6160)