[CXF-5251] Implement more stringent requirements on allowing OnBehalfOf/ActAs in the STS - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.7.6
Fix Version/s: 2.6.10, 2.7.7
Component/s: STS
Labels:
None

Estimated Complexity:
Unknown

Description

This task is to implement more stringent requirements on allowing OnBehalfOf/ActAs in the STS. A new interface will be introduced to determine whether or not is is allowed to issue a new token OnBehalfOf/ActAs some other token. To support either of these things in the STS it will be necessary to plug in a TokenDelegationHandler implementation to handle a specific token. Implementations are provided in the STS for SAML Tokens and UsernameTokens.

Attachments

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Colm O hEigeartaigh

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 04/Sep/13 16:31

Updated:: 27/Sep/13 18:18

Resolved:: 05/Sep/13 15:50