I would suggest you not roll your own and look for an established SAML
product like Ping Federate from Ping Identity (
http://www.pingidentity.com/). They can run on a local Windows box or
as a service (PF Express) and
have connectors for interaction with Java, Apache, Active Directory, etc.

My current employer uses Ping Federate but not for i integration. We do
SAML 1.x and 2.0 (which are different) with more than a dozen clients.
Bringing a new client online can take as little as a few hours with the most
effort being mapping their identity fields to our equivalents. The whole
thing is wizard-based.

On Thu, Oct 1, 2009 at 2:23 PM, Mike Cunningham <mike.cunningham@xxxxxxx>wrote:

Has anyone ever done any work using SAML (Security Assertion Markup
Language) on an iSeries either in RPG or Java? SAML is XML based and uses
HTTP and SOAP so I would suspect it should be possible. We are looking into
two different projects, both of which would involve using Shibboleth for
passing identity information back to the requesting organization. One of
these projects would involve passing back information contained in MS Active
Directory but the second could end up needing to send back data from a DB2
database on the iSeries. Which would mean writing our own application to
accept the request, look in the database and pass back the necessary
attributes.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.





As an Amazon Associate we earn from qualifying purchases.

This thread ...

Follow-Ups:
Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.