Develop SAML applications

Use SAMLTokenFactory to:

• configure token parameters
• create a SAML token
• bind the created token to a service request

The SAML trust client API provides helper functions that send WS-Trust SOAP requests to the specified external Security Token Service (STS). The SAMLTokenFactory API creates SAML tokens through various method signatures. The API also instantiates runtime configuration objects related to the SAML token requester, as well as the recipient. The WS-Trust Client API for SAML includes the WSSTrustClient class, the WSSTrustClientValidateResult class, and other configuration utility classes.

The following topics provide more information about developing SAML applications using the APIs.

• WS-Trust client API
  
• SAML token library APIs
  
• Create a SAML bearer token
  
• Create a SAML holder-of-key token
  
• Create a SAML sender-vouches token
  
• Propagation of SAML tokens
  
• Web services client token cache for SAML
  
• Passing SAML tokens between JAAS login modules
  
• Add attributes to self-issued SAML tokens
  
• Add attributes and re-signing existing SAML tokens (v8552)
  
• Customize the NameID for self-issued SAML tokens