Dear all, What is the best-practice approach for send authorization tokens for a system?, not only username and password, also other identity parameters, like the company, office etc, in a standar and interoperable way with other plataforms. The usernameToken of ws-security only support username and password, and no other parameters. Maybe SAML, but I have only two parts, not the identity provider.
Any ideas? Any help much appreciated -- Universidad Distrital Francisco José de Caldas http://www.udistrital.edu.co Conmutador: (57-1) 3239300 Bogotá, D.C., Colombia
