Monday Jan 17, 2011

Oracle Web Services Manager

It has been a long time since my last entry for this blog. In the mean time,
I moved from Glassfish org to Oracle's Identity Management org. While I will still
get involved with Metro and the open source community, my main focus will be on the enterprise Web services security, identity and policy management solutions with Oracle Web Services Manager (OWSM). Check out my blog there for more information and offerings of OWSM.

Saturday Dec 12, 2009

Metro 2.0 and Beyond

Metro 2.0 released with many new features and some critical enhancements and bugs fixes in security.

[Read More]

Thursday Nov 12, 2009

Handling Claims with Metro STS II

With Oasis standard versions of WS-SecurityPolicy 1.2 and WS-Trust 1.3, syntax is different for Claims

[Read More]

ActAs and Credential Delegation: update

Update the support for ws-trust 1.4 for token delegation to ensure interoperbility.

[Read More]

Monday Aug 17, 2009

Token Caching and Sharing, Single Sign On Among Services II: token life time

We will talk about how to manage the life time of an issued token on the client side.

[Read More]

Thursday Aug 13, 2009

ActAs and Credential Delegation III: Common Issues

Many users have picked up this feature for their applications. Here we will
describe some common issues come up so far and solutions.

[Read More]

Sunday Aug 09, 2009

ActAs and Credential Delegation II: Secure Conversation with STS

To optimize the communication with STS in this case, one should enable secure conversation.

[Read More]

Tuesday Jun 30, 2009

ActAs and Credential Delegation

We provide support for ActAs introduced in WS-Truts 1.4.

[Read More]

Wednesday Apr 29, 2009

Token Caching and Sharing, Single Sign On Among Services

We provide support for caching and sharing issued tokens from an STS among multiple
services in Metro 2.0.

[Read More]

Wednesday Apr 22, 2009

Matro 1.5 is released

Metro 1.5 released with some critical enhancements added and bugs fixed in security.

[Read More]

Sunday Apr 12, 2009

Handling Token and Key requirements at Run Time, Part III: select STS at run time

How to write your own configuration to select STS and set STS parameters at run time.

[Read More]

Monday Mar 30, 2009

Handling Token and Key requirements at Run Time, Part II: Claims, TokenType, etc

This is the second part of this series of blogs for handling token and key requirements at run Time. We will explain how to inject and manage Claims.

[Read More]

Monday Mar 23, 2009

Handling Token and Key Requirements at Run Time, Part I: Overview

This is the first part of this series of blog for handling
token and key requirements at run time. We provide an overview
of this new feature.

[Read More]

Friday Feb 27, 2009

Attributes for SAML 2.0 Assertions

Many users have reported that with Metro 1.4, the attributes from a custom STSAttributeProvider
are not included in the issued SAML 2.0 assertions:

SAML attributes and DisplayToken
Problems with SAML 2.0 and the STSAttributeProvider values
Workaround for SAML2.0 broken STS attribute provider?
With Metro STS, STSAttributeProvider values is not take in the issued SAML 2.0 asertions.

This is due to a bug in the DefaultSTSTokenProvider when the SAML 2.0 assertion is created.
This issue is now fixed for Metro 1.5. Nightly build for Metro 1.5 should be available next week.

Also with Metro, we provide a pluggable STSTokenProvider for which you can use to create
issued tokens yourself. This is particularly useful if you want:

1. Customize SAML assertions created and to be validated.
2. Support for issuing and validating other types of tokens.

A custom STSTokenProvider can be pluggin the same way as for a STSAttributeProvider.
See this blog entry Create custom STS with WSIT for more information.

About

Jiandong Guo

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today