[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
[higgins-dev] STS Status Update
|
Thanks to TomD and JimS I've been able to successfully integrate the LDAP
CP with the STS. It's been tested with the "Novell eXtend LDAP Utility".
I can now configure the STS to load both the LDAP CP and my simple Self CP
(using the CardId from the RST as the contextRef and the Username/Password
from the RST WSS UsernameToken as the credential) and generate RSTRs with
SAML Assertions including claim values from the CPs.
In order to configure these I've added a simple ContextFactory interface:
public interface IContextFactory
extends org.eclipse.higgins.idas.IContextFactory
{
public abstract void configure
(IdASRegistry IdAS,
java.util.Map mapParameters)
throws IdASException;
}
My Self CP implements this interface, and I've created a simple wrapper
for the LDAP CP that implements this interface. I look forward to a
"standard" way of accomplishing this.
Other than some strange IdAS JAR file incompatibilities, the biggest issue
was the fact that the LDAP CP throws an Exception when canCreate is called
with an unrecognized scheme in the URI, it should return false instead.
Now that the STS->LDAP issues are mostly resolved, I am moving back to
focusing on the CardSpace->STS issues. In order to resolve those issues I
need to provide MSFT with a publicly accessible endpoint to test against.
I am trying to use the higgins.eclipse.org server but I am having some
trouble logging in. While I await a resolution to that I will be doing
code cleanup, comments, copyrights etc. in anticipation of committing my
recent changes (hopefully today).
I will also be attempting to complete the various module documentation
requirements Paul went over during the F2F. Which should answer some of
Jim's questions about module content and dependancies.
I hope to be accessible today via the #higgins IRC channel if anyone needs
anything or has suggestions wrt getting access to the higgins.eclipse.org
server.
Thanks,
Mike
