Hi all, As Daniel mentioned WSS-204 is targeting WSS4J 1.5.x. It was the basic implementation, which was required for SAML 2.0 support in Rampart. It needs some improvements.(Colm has suggested some in his comments to the JIRA). As one of these improvements, we can get rid of the OpenSAML 1.1 dependencies completely same as in WSS-146.
I will work on the necessary improvements and resubmit the patch. Thanks. /thilina Thilina Mahesh Buddhika http://blog.thilinamb.com On Tue, Mar 9, 2010 at 10:17 PM, Daniel Kulp <[email protected]> wrote: > > There are a couple of JIRA entries for wss4j with patches to update WSS4J > to > support OpenSAML2: > https://issues.apache.org/jira/browse/WSS-146 > https://issues.apache.org/jira/browse/WSS-204 > > I just think no-one really has time to evaluate them yet. WSS-204 is more > of > a minimal change patch that keeps OpenSAML1 for the old stuff but adds in > OpenSAML2. That's the least invasive, but adds new deps and such. > WSS-146 > is more of a complete redo of the SAML stuff in WSS4J using only OpenSAML2 > libraries. I definitely prefer the second approach, but care needs to be > taken to make sure it doesn't break the existing use cases. > > One thought was to do WSS-204 on the 1.5.x line (simple, more backwords > compatible), but do 146 for the 1.6 line. > > Any of the WSS4J folks have opinions? > > Dan > > > > On Tuesday 09 March 2010 11:35:02 am George Stanchev wrote: > > Martin, what was that all about?! > > > > Avijit, latest rampart module supports OpenSAML 2. Check it out here [1] > > > > George > > > > [1] http://ws.apache.org/rampart/ > > > > On Tue, Mar 9, 2010 at 6:32 AM, Martin Gainty <[email protected]> > wrote: > > > hire an american software security specialist for a correct solution > > > > > > Viel Gluck! > > > Martin Gainty > > > American-Software-Security-Contractor > > > ______________________________________________ > > > Verzicht und Vertraulichkeitanmerkung/Note de déni et de > confidentialité > > > > > > Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene > > > Empfaenger sein, so bitten wir hoeflich um eine Mitteilung. Jede > > > unbefugte Weiterleitung oder Fertigung einer Kopie ist unzulaessig. > > > Diese Nachricht dient lediglich dem Austausch von Informationen und > > > entfaltet keine rechtliche Bindungswirkung. Aufgrund der leichten > > > Manipulierbarkeit von E-Mails koennen wir keine Haftung fuer den Inhalt > > > uebernehmen. > > > > > > Ce message est confidentiel et peut être privilégié. Si vous n'êtes pas > > > le destinataire prévu, nous te demandons avec bonté que pour satisfaire > > > informez l'expéditeur. N'importe quelle diffusion non autorisée ou la > > > copie de ceci est interdite. Ce message sert à l'information seulement > > > et n'aura pas n'importe quel effet légalement obligatoire. Étant donné > > > que les email peuvent facilement être sujets à la manipulation, nous ne > > > pouvons accepter aucune responsabilité pour le contenu fourni. > > > > > > > > > > > > > > > > > > > > > ------------------------------ > > > To: [email protected] > > > Subject: WSS4J support for OpenSAML 2 library > > > From: [email protected] > > > Date: Tue, 9 Mar 2010 18:49:16 +0530 > > > > > > > > > > > > Hi, > > > > > > I am trying to use the WSS4J library with Axis2 using SAML token > > > authentication. I would like to know if WSS4J supports the OpenSAML 2.x > > > versions or I need to use the OpenSAML 1.1 version. > > > Please help me > > > > > > Thanks & regards, > > > > > > Avijit Ajay > > > Tata Consultancy Services > > > Ph:- +91 22 6779-8512 > > > Mailto: [email protected] > > > Website: http://www.tcs.com > > > ____________________________________________ > > > Experience certainty. IT Services > > > > > > Business Solutions > > > Outsourcing > > > > > > ____________________________________________ > > > > > > =====-----=====-----===== > > > Notice: The information contained in this e-mail > > > message and/or attachments to it may contain > > > confidential or privileged information. If you are > > > not the intended recipient, any dissemination, use, > > > review, distribution, printing or copying of the > > > information contained in this e-mail message > > > and/or attachments to it are strictly prohibited. If > > > you have received this communication in error, > > > please notify us by reply e-mail or telephone and > > > immediately and permanently delete the message > > > and any attachments. Thank you > > > > > > > > > > > > ------------------------------ > > > Hotmail: Trusted email with Microsoft’s powerful SPAM protection. Sign > up > > > now. <http://clk.atdmt.com/GBL/go/201469226/direct/01/> > > -- > Daniel Kulp > [email protected] > http://dankulp.com/blog > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
