Last active
December 27, 2015 09:59
-
-
Save anilsaldhana/7307915 to your computer and use it in GitHub Desktop.
Description of the design for the Undertow SAML Authenticators using PicketLink
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| PicketLink has SAML Authenticators/Valves for JBossWeb/Tomcat. | |
| Starting WildFly 8, there is a new web container called as Undertow. | |
| PicketLink has to create authenticators/Valves for the IDP and SP that work with Undertow. | |
| ================================== | |
| Important Requirements: | |
| ================================== | |
| - Startup | |
| * Configuration has to be pluggable and dynamic | |
| * Schema can be updated to v2.5 so that additional elements can be added | |
| * Events : UpdateConfigurationEventNotification | |
| - General Processing | |
| * Use of SAML2 Handlers | |
| * Use of W3C Document for request/response for XML Signature/Encryption. | |
| - Request Processing at IDP | |
| * Allow seamless failover to REDIRECT profile in the absence of POST binding being used by SP | |
| - Service Providers | |
| * Separate Authentication Mechanisms that fall back to each of FORM, BASIC, CLIENT-CERT and DIGEST | |
| ================ | |
| JIRA Issues | |
| ================ | |
| https://issues.jboss.org/browse/PLINK-318 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment