janbernhardt.blogspot.com
Lessons Learned: September 2014
http://janbernhardt.blogspot.com/2014_09_01_archive.html
This blog focuses on technical solutions around security and application integration tasks. SSO with Fediz IDP and Kerberos. Just recently to allow browser-based Kerberos authentication at the IDP. In this blog Im going to explain how to setup your system environment to provide WS-Federation based SSO for a normal web application:. Prepare your Active Directory. Installing the Fediz Demo Application. Installing Fediz IDP and a Kerberos enabled STS. Enable Kerberos for your Browser. REST Security - SAML A...
janbernhardt.blogspot.com
Lessons Learned: Enabling code syntax highlighting for my blog
http://janbernhardt.blogspot.com/2014/08/enabling-code-syntax-highlighting-for.html
This blog focuses on technical solutions around security and application integration tasks. Enabling code syntax highlighting for my blog. Since I'm planning to write lots of posts about development and configuration, I needed a nice code highlighting feature for my blog. It looks like that blogger.com does not provide any code highlightings by its own, so I searched google and found the following solution to work quite well. 1 Open your template in HTML edit mode. Link href='http:/ alexgorbatchev.co...
janbernhardt.blogspot.com
Lessons Learned: October 2014
http://janbernhardt.blogspot.com/2014_10_01_archive.html
This blog focuses on technical solutions around security and application integration tasks. Integration Testing for STS Extensions with Jetty. Recently I had to develop some extensions (ClaimHandler, Validator) to the CXF STS. My problem at first was, how to write an integration test that proves the correct implementation of my extensions. At first I placed my Mockup classes and web config in the. Folder from my maven project and added the jetty plugin to my. In a previous post. Which allows to define cl...
janbernhardt.blogspot.com
Lessons Learned: January 2015
http://janbernhardt.blogspot.com/2015_01_01_archive.html
This blog focuses on technical solutions around security and application integration tasks. Single Logout with Fediz - WS-Federation. In this blog Ill explain how to setup a demonstrator to show single sing-on as well as single sing-off. Since single sing-off is implemented in CXF Fediz version 1.2, Im going to use a snapshot build since 1.2 is not yet released. Subscribe to: Posts (Atom). Single Logout with Fediz - WS-Federation. View my complete profile. I don't claim to know everything and to be error...
janbernhardt.blogspot.com
Lessons Learned: Using the Talend PDP ouside of an OSGi Container
http://janbernhardt.blogspot.com/2014/10/using-talend-pdp-ouside-of-osgi.html
This blog focuses on technical solutions around security and application integration tasks. Using the Talend PDP ouside of an OSGi Container. In a previous post. I've explained how to setup a demo application using SAML token for authentication and XACML for authorization in context of REST services. This post continues with the demo application described in my previous post. To follow this post you should first read my other post. This dependency is available to Talend Enterprise Edition only! Policy Po...
janbernhardt.blogspot.com
Lessons Learned: Identity Federation - Identity Mapping vs. Claim Mapping
http://janbernhardt.blogspot.com/2014/10/identity-federation-identity-mapping-vs.html
This blog focuses on technical solutions around security and application integration tasks. Identity Federation - Identity Mapping vs. Claim Mapping. TODO: add picture here -. Identity mapping is usually required if a user is registered in both (target and home realm) security domains with an individual user each. These users can be managed in both security domains independently. They do not need to share the same username, password or other kind of user attributes like assigned roles. A simple claim map...
janbernhardt.blogspot.com
Lessons Learned: Understanding WS-Federation - Passive Requestor Profile
http://janbernhardt.blogspot.com/2014/12/understanding-ws-federation-passive.html
This blog focuses on technical solutions around security and application integration tasks. Understanding WS-Federation - Passive Requestor Profile. WS-Federation is an identity federation specification which makes it possible to setup a SSO federation including multiple security realms. A realm (sometimes also called domain) represents a single unit under security administration or a part in a trust relationship. Within the WS-Federation standard the following entities are defined:. Any custom logic can...
janbernhardt.blogspot.com
Lessons Learned: Integration Testing for STS Extensions with Jetty
http://janbernhardt.blogspot.com/2014/10/integration-testing-for-sts-extensions.html
This blog focuses on technical solutions around security and application integration tasks. Integration Testing for STS Extensions with Jetty. Recently I had to develop some extensions (ClaimHandler, Validator) to the CXF STS. My problem at first was, how to write an integration test that proves the correct implementation of my extensions. At first I placed my Mockup classes and web config in the. Folder from my maven project and added the jetty plugin to my. Run Jetty in the Maven life-cycle. To get a d...
janbernhardt.blogspot.com
Lessons Learned: August 2014
http://janbernhardt.blogspot.com/2014_08_01_archive.html
This blog focuses on technical solutions around security and application integration tasks. Enabling code syntax highlighting for my blog. Since Im planning to write lots of posts about development and configuration, I needed a nice code highlighting feature for my blog. It looks like that blogger.com does not provide any code highlightings by its own, so I searched google and found the following solution to work quite well. Subscribe to: Posts (Atom). Enabling code syntax highlighting for my blog. Home ...
