I'm trying to create a web service in CXF that is secured using WS-Security with SAML tokens. Looking through the documentation, and briefly at the WSS4JInInterceptor, it appears that this is not implemented. I want to modify WSS4JInInterceptor to handle SAML tokens. Can anyone provide me with some information about how the WSS4JInInterceptor works to help me get started? Also, I'm wondering if I need to modify the PolicyBasedWSS4JInInterceptor?
Thanks, John
