I have this web service that requires SAML assertions: - Example request: https://hastebin.com/uducuyobuv.xml - WSDL: https://hastebin.com/yapotuqiqu.wsdl - XSD: https://hastebin.com/udoworowig.xsd
I put a CallbackHandler in the SecurityConstants.SAML_CALLBACK_HANDLER key but it is never called. It seems to me that the security policy does not reference SAML in any way, so I may need to manually configure CXF. But how?
