Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
RE: [higgins-dev] RP code checked in

if you could send them, i would appreciate it, thx.
 
jeff


From: higgins-dev-bounces@xxxxxxxxxxx [mailto:higgins-dev-bounces@xxxxxxxxxxx] On Behalf Of Greg Byrd
Sent: Monday, July 02, 2007 11:02 AM
To: Higgins (Trust Framework) Project developer discussions
Subject: Re: [higgins-dev] RP code checked in


/cvsroot/technology/org.eclipse.higgins/app/RelyingPartyDemo and .../RelyingPartyDemoApp

They require some 3rd-party libraries that I can't check in, because we don't have clearance to distribute them.  The easiest thing (if you want them) is for me to send them to you separately.  But eventually we need a project page that lists the dependencies and where to find them.

...Greg



Broberg, Jeffrey C wrote:
fantastic, where was it checked in, what is the easiest way to get the code so that i can properly understand and categorize pieces ?
 

jeff

 


From: higgins-dev-bounces@xxxxxxxxxxx [mailto:higgins-dev-bounces@xxxxxxxxxxx] On Behalf Of Greg Byrd
Sent: Friday, June 29, 2007 12:51 PM
To: Higgins (Trust Framework) Project developer discussions
Subject: Re: [higgins-dev] RP code checked in

Jeff, now that I understand the code a little better, I think I can answer some of your questions:
What parts of the Demo can be reused as parts of the RPE ( Relying Party Enablement ) ?
  
The demo is an example of how to use an authentication filter and servlets.  The RelyingPartyDemo project is the filter, and the RelyingPartyDemoApp is an example of using the filter.  I think both parts are relevant to RPE.  If you like, I can add rows to the RPE Component table for these.
 
What mechanism/tool was used to generate the object tag ?
  
Don't know -- Bruce will have to answer this one.
 
What mechanism/tool was used for token disassembly ?
  
The relevant parts of the code (I think) are org.eclipse.higgins.rp.server.impl.Login.java and org.eclipse.higgins.tp.token.identity.DigitalIdentity.java.  The first one (Login.java) finds the SAML token in the request, decrypts it, and verifies its signature (using Apache XML Security).  It then creates a DigitalIdentity from the token, using DigitalIdentity.fromXML(), which retrieves the attributes from inside the token. (The XML parsing is done using Apache Axiom.)
 
What other pieces of functionality may be relevant for RPE ?
  

The filter (AuthNFilter.java), the Logout servlet (Logout.java), the web pages in ReplyingPartyDemoApp/WebContent, and the configuration file that specifies the filter -- ReplyingPartyDemoApp/WebContent/WEB-INF/web.xml.

...Greg



_______________________________________________ higgins-dev mailing list higgins-dev@xxxxxxxxxxx https://dev.eclipse.org/mailman/listinfo/higgins-dev


Back to the top