Does openws1.4.2 support RequestSecurityToken?

13 views
Skip to first unread message

Gina Choi

unread,
Mar 13, 2012, 1:27:54 PM3/13/12
to d...@shibboleth.net

 

Hi,

 

I am planning to build RequestSecurityToken and send it over to STS to receive RequestSecurityTokenResponse. I looked at APIs for openws-1.4.2.jar and there is a RequestSecurityTokenImpl.java class which implemented RequestSecurityToken interface, but RequestSecurityTokenImpl.java class is very simple. Is this something that I can use to build RequestSecurityToken to send to STS or I should look for some other libraries?

 

Thanks.

 

Gina Choi

Brent Putman

unread,
Mar 13, 2012, 3:33:14 PM3/13/12
to d...@shibboleth.net

On 3/13/12 1:27 PM, Gina Choi wrote:
>
>
> Hi,
>
>
>
> I am planning to build RequestSecurityToken and send it over to STS to
> receive RequestSecurityTokenResponse. I looked at APIs for
> openws-1.4.2.jar


I don't think there's any significant difference in the WS-Trust
support, but the latest openws is 1.4.4. You might want to consider
using the latest version of the OpenSAML stack, just to get all the
latest bug fixes, etc.


> and there is a RequestSecurityTokenImpl.java class
> which implemented RequestSecurityToken interface, but
> RequestSecurityTokenImpl.java class is very simple.


I don't know what you mean by "very simple". It implements the schema
for that element as defined in WS-Trust. No more, no less.

> Is this something
> that I can use to build RequestSecurityToken to send to STS or I should
> look for some other libraries?
>

Yes, it implements the Java-XML binding, so you can build up the XML
using a Java object model and then marshall it to a DOM structure (just
like all the other schemas that OpenSAML supports, like SAML itself).

There isn't any higher level support for actually doing the SOAP call,
protocol message handling, etc. That's all functionality that would for
example be built on top of OpenSAML. I don't know personally whether
there are libraries that actually do that for WS-Trust using OpenSAML,
like WSS4J does to provide SAML Assertion token support for WS-Security
via OpenSAML.

I'm sure there are non-OpenSAML based libraries that have various types
of WS-Trust protocol support.

--
To unsubscribe from this list send an email to dev-uns...@shibboleth.net

Reply all
Reply to author
Forward
0 new messages