This week's book giveaway is in the Cloud/Virtualization forum.
We're giving away four copies of Mastering Corda: Blockchain for Java Developers and have Jamiel Sheikh on-line!
See this thread for details.
Win a copy of Mastering Corda: Blockchain for Java Developers this week in the Cloud/Virtualization forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Paul Clapham
  • Ron McLeod
  • Bear Bibeault
  • Liutauras Vilda
Sheriffs:
  • Jeanne Boyarsky
  • Tim Cooke
  • Junilu Lacar
Saloon Keepers:
  • Tim Moores
  • Tim Holloway
  • Stephan van Hulst
  • Jj Roberts
  • Carey Brown
Bartenders:
  • salvin francis
  • Frits Walraven
  • Piet Souris

SAML in Web Services

 
Greenhorn
Posts: 14
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello all!

I should use SAML security in my Web Service projects.
Can anyone suggest where to start, what products are available (Axis? WebSphere?) and where to find sample project how it's done?

I would be very thankfull.

Cheers,

TB
 
Ranch Hand
Posts: 110
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Please check this link out.
This tutorial illustrates how you can enable SAML-based authentication between a web service client and a web service provider using the bundled Access Manager along with the integrated support for the WS-Security standard in Application Server's web services client and server-side containers.
 
Ranch Hand
Posts: 180
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I'd suggest reading a little bit on Wiki (http://en.wikipedia.org/wiki/SAML) first to learn the fundamentals and then hitting on a code implementation site
 
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello Tim,

Which Web Services stack are you using?
Depending of the stack the configuration of WS-Security can vary, the integration of SAML too.

I am working for Oracle so I will talk about our stack but you can, as you have seen with the previous post, do the same with Netbeans.

So within OracleAS Web Service stack we have build it WS-Security, with SAML, in a declarative way; this is build in the stack. And you can do that from the administrative console, or the development tools (Oracle JDeveloper)

But one of the challenges is when you have define your security, how can you ensure that the same policy, in your case with SAML, is applied to all the services you need to (even if they are from different stacks) and how you can integrate that to your global identity management solutions are also some question you should ask and put in your project analysis when you talk about Web Services Security. The solution that we have within Oracle is part of our Fusion Middleware: Oracle Web Services Manager (OWSM)

Regards
Tugdual Grall
 
Tim Bels
Greenhorn
Posts: 14
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I'm using UISecures UILogin.
BUT if there are any genaral libraries that implements SAML 2.0 I also
interested about them,

Cheers!
reply
    Bookmark Topic Watch Topic
  • New Topic