This week's book giveaway is in the OO, Patterns, UML and Refactoring forum. We're giving away four copies of Refactoring for Software Design Smells: Managing Technical Debt and have Girish Suryanarayana, Ganesh Samarthyam & Tushar Sharma on-line! See this thread for details.
Can someone suggest an easily available and readily installable SAML token generator. I dont want something as sophisticated as shibboleth, i just want a piece of code that can generate SAML authentication, authorization and attribute tokens. I am developing an intermediary that understands SAML tokens, no matter what the source is.
Hi Ulf, Thanks alot for the prompt reply. WSS4J uses openSaml for creating SAML tokens. Actually, i wanted something like an openLdap thingie, wherein i can use a utility to create SAML requests and it can give me back the SAML assertions. (This would mean that the implementation will be a service provider for authentication and authorization.) WSS4j is more of an API, correct me if i am wrong. I will tell you in detail as to what i need: I am writing an intermediary that will take request from a third-party (they will be SAML authentication/attribute/authorization assertions). Based on the type of assertions, i may choose to: 1) Post a request to a SAML authorization server(if i received an authentication assertion) 2) Just propogate the authentication info in some other format to my client. 3) Fetch some attributes from a configured server and send it to the client.
So, i need an environment where based on the SAML request i make, i can get SAML assertions.