SAML Authorization over SSL (The WSIT Tutorial)

The WSIT Tutorial

Previous: Message Authentication over SSL
Next: Endorsing Certificate

SAML Authorization over SSL

The SAML Authorization over SSL mechanism attaches an authorization token with the message and uses SSL for confidentiality protection. In this mechanism, the SAML token is expected to carry some authorization information about an end user. The sender of the token is actually vouching for the credentials in the SAML token.

To use this mechanism, configure SSL on the server, as described in Configuring SSL For Your Applications, and, on the clients side, configure a SAMLCallbackHandler as described in Example SAML Callback Handlers.

Previous: Message Authentication over SSL
Next: Endorsing Certificate