OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [saml-dev] How to pass logged in user and password with SAML message in webservice.

SAML assertion acts as token/credential in your case so there is no need to pass "password".

Subject element in assertion represents a user identifier (user id).

If you need to pass username/password then you should use WS-Security UsernameToken as token which represents a subject on which behalf you are calling webservice.



On 7/9/07, Satyendra Singh <satyendras@outlinesys.com> wrote:

HI,

I want to send the logged in users information (user id and password) within a SAML message while calling a SAML based web service. Is there any standard way? I am using WSS4J and open SAML APIs to create a SAML based call.

Thanks in advance.

 

Satyendra Singh

email :  satyendras@outlinesys.com

  

 


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]