My existing webapp supports a soap-endpoint accessed using spring-ws and secured using spring-security with XwsSecurityInterceptor. Currently it uses basic authentication and an LDAP Identity Provider (IdP).
I am migrating this app to support SAML2 token and a SAML based IdP like ssoconnect.
Ideally, I would like to leave the old vs. new authentication mechanism a deployment choice configured simply by setting a property (authn.mode with choice ldap or saml). The property will be used to import a corresponding spring config file (apllicationSecurity-ldap.xml or applicationSecurity-saml.xml)
Does any one have experience using spring-ws, WSS, spring-security-saml2-core with SAML token profile? I am wondering if XwsSecurityInterceptor will work given that XWS-Security project page says that support for SAML Token Profile is partial. In comparison the WSS4J project page does not state any such caveats in declaring its support for SAML Token Profile.
Please share any configuration / experience using spring-ws, WSS, spring-security-saml2-core with SAML token profile. Thanks.
I am migrating this app to support SAML2 token and a SAML based IdP like ssoconnect.
Ideally, I would like to leave the old vs. new authentication mechanism a deployment choice configured simply by setting a property (authn.mode with choice ldap or saml). The property will be used to import a corresponding spring config file (apllicationSecurity-ldap.xml or applicationSecurity-saml.xml)
Does any one have experience using spring-ws, WSS, spring-security-saml2-core with SAML token profile? I am wondering if XwsSecurityInterceptor will work given that XWS-Security project page says that support for SAML Token Profile is partial. In comparison the WSS4J project page does not state any such caveats in declaring its support for SAML Token Profile.
Please share any configuration / experience using spring-ws, WSS, spring-security-saml2-core with SAML token profile. Thanks.