You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Oliver Wulff (JIRA)" <ji...@apache.org> on 2014/02/20 10:30:23 UTC
[jira] [Created] (FEDIZ-72) Make Trusted IDP protocol customizable
Oliver Wulff created FEDIZ-72:
---------------------------------
Summary: Make Trusted IDP protocol customizable
Key: FEDIZ-72
URL: https://issues.apache.org/jira/browse/FEDIZ-72
Project: CXF-Fediz
Issue Type: Improvement
Components: IDP
Affects Versions: 1.1.0
Reporter: Oliver Wulff
Assignee: Oliver Wulff
In release 1.1, the Fediz IDP doesn't support other protocols than WS-Federation for a Trusted IDP. Due to the usage of Spring Web Flow, the flow can still be customized but it has a bigger impact and later migration to new release require more effort.
This is a proposal to add support for custom protocols for Trusted IDPs:
- Introduce Interface "SSOProtocolBridge" which is able to transform a WS-Federation SignIn Request to another SignIn Request (ex. SAML-P AuthRequest) and to transform another SignIn Response (ex. SAML-P AuthResponse) to a WS-Federation SignIn Response.
- Processing logic is part of the main IDP web flow which chooses a protocol depending on the configuration of the TrustedIdp
- New protocol implementations can be found due to spring annotations scanning and injecting the beans in the core processing logic
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)