Hi there
This is an interesting question and I just came recently across the following specification which is in draft status: https://tools.ietf.org/html/draft-ietf-oauth-token-exchange-16 But I have to look into it in more detail. Thanks Oli ________________________________ Von: Raggy Fab <[email protected]> Gesendet: Freitag, 1. März 2019 08:05:22 An: [email protected] Betreff: User Propagation with REST Hi cxf users! At my old company, when using SOAP, we were using Standards like WS-Trust including a Security Token Service to authenticate SAML Token for our users (incl. audience-uri-specific claims/role). We used the WS-Federation Standard to let users authenticate and used WS-Trust to propagate the user's saml token across multiple applications/webservice hops. (onBehalfOf Flow). We did use SAML token issued from service accounts for backend2backend communication. Now my question is: Which of these use cases are supported (out of the box or partly supported) in cxf, based on which protocol/flows REST/OIDC/OAuth2/JWT World? I had trouble finding input specifically how to implement a onBehalfOf Flow online. If you can point me to a specific flow or how to give me hints how achieve a similar use case (or let me know if there is no standard for a certain use case) that would be awesome! greetings Raggy As a recipient of an email from Talend, your contact personal data will be on our systems. Please see our contacts privacy notice at Talend, Inc. <https://www.talend.com/contacts-privacy-policy/>
