OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

xacml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: RE: [xacml-users] RV: XACML question


Hi Seth, thank you for answering my question.
 
As you said, I'm trying to send XACML request/response via SOAP. At the specification theres only a schema about that. So, I was wondering if someone tried to do that.
 
On the other hand, I was taking a look at the SAML specification, and I think that it may solve my problem. I would appreciate if someone can share their experience using SAML in a SOAP environment.
 
Thank you
 
Ariel Neisen

________________________________

De: Seth Proctor [mailto:Seth.Proctor@Sun.COM]
Enviado el: Vie 11/03/2005 01:30 p.m.
Para: Ariel M. Neisen
CC: xacml-dev@lists.oasis-open.org; xacml-users@lists.oasis-open.org
Asunto: Re: [xacml-users] RV: XACML question




Hello Ariel!

On Mar 11, 2005, at 9:22 AM, Ariel M. Neisen wrote:
> My name is Ariel Neisen and I'm a developer from Argentina.
> I'm investigating about how to bind XACML to a Web Service. It's been
> a little hard for me to figure out in my head how to implement the XML
> that would be passed via SOAP.

Could you provide a little more detail about how you're trying to use
XACML in a web services environment? For instance, when you talk about
binding, are you trying to send an XACML Request/Response in SOAP, are
you trying to pass messgaes that include XACML policy, or are you
trying to use XACML to let the service make authorization decisions?

> Reading the XACML profile for Web Services, I saw that there's a way
> to perform a request-response-operation through SOAP, but I've not
> been able to find an example of its implementation, since it's a
> fairly new ground. I was wondering if you could provide me one
> example, or help me with my problem.

This profile effectively defines a subset of XACML that can be used for
negotiation with web services. It really was an experiement, and to my
knowledge no one has implemented the SOAP bindings described in the
second half of that spec. You're probably better off looking at the
SAML profile included with the 2.0 specification, which is now a
standard and may have what you're looking for.


seth





[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]