This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes Web Services and the fly likes Secure token service ( STS ) implementation for a soap webservice Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Java » Web Services
Bookmark "Secure token service ( STS ) implementation for a soap webservice " Watch "Secure token service ( STS ) implementation for a soap webservice " New topic
Author

Secure token service ( STS ) implementation for a soap webservice

vins vinsk
Greenhorn

Joined: Jan 13, 2011
Posts: 3
Hi,

We need to make our webservice secure(WS-Trust) for which we are planning to implement a Secure token service (STS) which will generate
the token after users authentication (after validating who he claims to be with his certificate or credentials).
The token generate will be SAML(Secure assertion markup language) which will contain the token information and which i need to
pass on to the actual webservice and which will validate the token and then respond to my webservice request.

There is very little on the internet there is more on the behaviorial information of STS rather than actual sample implementation.

Can anybody give me some hint on how should i go for it asap?
Thanks in advance
vins vinsk
Greenhorn

Joined: Jan 13, 2011
Posts: 3
For guys who have reached on this page . Here is the SAML example i could find on google although it is part of STS application development below link at list give you a feel of how SAML works.

https://developers.google.com/google-apps/sso/saml_reference_implementation_web#samlReferenceImplementationWebCodeStructure
You may find the source Code zip on below location .(You can set up the project in eclipse as dynamic web project ) This is basically a single sign on example based on SAML
https://code.google.com/p/google-apps-sso-sample/downloads/detail?name=sso-sample-1.0.1-java.zip&can=1&q=
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Secure token service ( STS ) implementation for a soap webservice
 
Similar Threads
web services / logonhanlder service
How would the client know what kind WS-security to use to access the secured service
Security Pattern
Webservice Securtiy support using SAML token deployed on Weblogic
Generating a token request (WS-Trust)-HELP