This content has been marked as final.
Show 1 reply
-
1. Re: SAML Assertion with roles in PicketLink STS
mstanski Sep 30, 2011 8:37 AM (in response to mstanski)Ok, I found the solution
All you need to do is to add AttributeProvider to picketlink-sts.xml
<TokenProvider ProviderClass="org.picketlink.identity.federation.core.wstrust.plugins.saml.SAML20TokenProvider"
TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0"
TokenElement="Assertion"
TokenElementNS="urn:oasis:names:tc:SAML:2.0:assertion">
<Property Key="AttributeProvider" Value="org.picketlink.identity.federation.bindings.jboss.auth.SAML20TokenRoleAttributeProvider"/>
<Property Key="org.picketlink.identity.federation.bindings.jboss.auth.SAML20TokenRoleAttributeProvider.tokenRoleAttributeName" Value="Role"/>
</TokenProvider>