Hi Raj, Using the SOAP API I can validate the token and get the subject. Do you know if having this information can I create the SAML request or assertation?
Thanks 2015-10-09 23:17 GMT-03:00 Rajkumar Rajaratnam <[email protected]>: > Hi, > > AFAIK, OAuth access tokens doesn't carry any identity information (about a > principal). > > So you can't generate SAML Assertion from OAuth access tokens. But you can > do the reverse - that is, you can send a valid SAML Assertion to the token > endpoint of IS to request for an OAuth access token. Refer [1 , 2 & 3] for > more details on this. > > [1] > https://docs.wso2.com/display/IS500/SAML2+Bearer+Assertion+Profile+for+OAuth+2.0 > [2] > http://xacmlinfo.org/2014/10/31/saml2-bearer-assertion-profile-for-oauth-2-0/ > [3] https://docs.wso2.com/pages/viewpage.action?pageId=47515509 > > Thanks, > Raj. > > On Sat, Oct 10, 2015 at 2:49 PM, Júnior <[email protected]> wrote: > >> Hi, >> Is is possible to generate a Saml assertation from a Oauth access token? >> >> Is there any API or service on wso2 IS that does this job? >> >> Thanks >> >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> >> > > > -- > Rajkumar Rajaratnam > Committer & PMC Member, Apache Stratos > Software Engineer, WSO2 > > Mobile : +94777568639 > Blog : rajkumarr.com > -- Francisco Ribeiro *SCEA|SCJP|SCWCD|IBM Certified SOA Associate*
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
