[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [saml-dev] Re: Informing SP about session invalidated in IDP
XACML is a different standard. Questions about XACML should be directed to the xacml-dev list. To answer, there is no such thing as “the” XACML java api jar. The OASIS XACML TC, like the SS TC has defined a standard and left it to others to implement it. Most XACML implementations are commercial products. Historically, the most popular open source XACML implementation was Sun-xacml. A number of others were built by modifying sun-xacml. However, sun-xacml was never updated after XACML 2.0. There are now at least two open source XACML 3.0 products. I recommend WSO2’s Balana XACML engine. They just announced support for the AzAPI of the OpenAz Project. If by API you actually mean network protocol, the XACML 3.0 standard defines two, one using XML/SOAP the other using JSON/HTTP. Most XACML PDPs whether commercial or open source support both. (The JSON one is actually still being standardized, although it is quite stable.) The OpenAz project hopes to soon have a open source package which will allow you to call either a remote or a local (imbedded) PDP using the same programming API. Eventually this will support both the SOAP and JSON format remote calls. Links: XACML TC Public Page https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=xacml XACML References and Implementations (unfortunately not updated since 2011) http://www.oasis-open.org/committees/download.php/42588/xacmlRefs-V1-85.html Latest version of specification for remote XML/SOAP protocol (Chapter 4) Latest Version of specification for JSON/HTTP protocol https://www.oasis-open.org/apps/org/workgroup/xacml/download.php/50927/xacml-json-http-v1.0-wd15.doc Info on WSO2 Balana XACML engine http://xacmlinfo.org/category/balana/ Blog on Balana AzAPI support http://rajithayrm.blogspot.com/2014/02/wso2-balana-openaz-java-azapi-provider.html OpenAz Project http://www.openliberty.org/wiki/index.php/OpenAz_Main_Page Hal From: Phalguni Mukherjee [mailto:phalgunimukherjee1007@gmail.com] Do anybody knows the link fro XACML java api jar? On Tue, Feb 4, 2014 at 4:07 PM, Phalguni Mukherjee <phalgunimukherjee1007@gmail.com> wrote: Hi All, I am new to SAML and will be thankful if someone can help me with the following problem: I have my attribute defined as follows: but when I fetch the value through: I get the keys as "uid" and "cn", these are the IDP specific key whereas I was expecting the value set to my keys i.e "userid" and "name" can someone tell me where I am going wrong? On Sat, Jan 18, 2014 at 11:30 AM, Phalguni Mukherjee <phalgunimukherjee1007@gmail.com> wrote: I was trying to use SAML through SSO,my question is when a session becomes invalid in IDP, how does IDP notifies this to SP, if I have multiple copy of SP sitting in geographically distributed region sitting behind a load balancer,how the message reaches a particular SP as the DNS name for all will be same. -- Phalguni Mukherjee
Phalguni Mukherjee -- Phalguni Mukherjee |
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]