axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Hasini Gunasinghe <>
Subject Re: Using rampart as an STS
Date Fri, 31 Aug 2012 13:04:36 GMT

Sample 08 shipped with Rampart distribution demonstrates how to obtain a
SAML token from Secure Token Service backed by rampart-trust module.
You can find this sample at

Also, WSO2 Identity Server <> - an
open source solution - ships a STS (based on Rampart) which is easy to
configure and use.


On Thu, Aug 30, 2012 at 5:43 PM, abdelrahman almahmoud <> wrote:

> Hi
> I have a simple web service and a client which are working fine, I
> want to have the client request a token from a third party and present
> it to the service, then have the service validate it.
> The problem is finding an easy to set-up STS that would issue SAML
> tokens, I was looking at openAM and it seemed complex for a quick
> set-up and test. I found this link [1] which suggests that rampart has
> STS functionality but I couldn't find more information on it. I simply
> want something that would verify the user using username/password or
> password digest and then give him a unique token that contains the
> secret key
> I would then extract the secret key on the service side after I
> validate the token. I will handle renewing the key manually by
> deriving them from other elements
> Can someone point me to more information about the STS in rampart, or
> tell me if its possible to do this with it
> Thanks
> [1]
> ---------------------------------------------------------------------
> To unsubscribe, e-mail:
> For additional commands, e-mail:

View raw message