Configuration GuidesFederation Security Services GuideConfigure SOA Security Manager as an Account Partner › Customizing Content in WS-Federation Assertions

Previous Topic: Validate Signout Requests that are Digitally Signed

Next Topic: Integrate the Assertion Generator Plug-in with SiteMinder (SAML 2.0/WS-Federation)

Customizing Content in WS-Federation Assertions

The WS-Federation Assertion Generator produces SAML assertions. Assertions are the basis for user authentication in a federated environment. You can customize the content of the SAML assertion by configuring an Assertion Generator plug-in. Using this plug-in, you can modify the assertion content for your business agreements between partners and vendors.

To use the WS-Federation Assertion Generator plug-in

  1. Implement the plug-in class.

    A sample class, AssertionSample.java, can be found in sdk/samples/assertiongeneratorplugin.

  2. Configure the Assertion Generator plug-in from the Advanced tab of the Resource Partner Properties dialog.

    Note: Specify an Assertion Generator plug-in for each Resource Partner.

    1. In the Full Java Class Name field, enter the Java class name of the plug-in.

      For example, com.mycompany.assertiongenerator.AssertionSample

      A sample plug-in is included in the SDK. You can view the sample assertion plug-in at sdk/samples/assertiongeneratorplugin.

    2. Optionally, in the Parameters field, enter the string that gets passed to the plug-in as a parameter at run time.

      The string can contain any value; there is no specific syntax to follow.

Note: For reference information about the WS-Federation Assertion Generator plug-in, see the AssertionGeneratorPlugin interface in the Javadoc Reference. This information applies to the WS-Federation Assertion Generator and the SAML Assertion Generator. For overview and conceptual information, see the SOA Security Manager Programming Guide for Java.