|
|
|
The message consumer plug-in is a Java program that implements the Message Consumer Extension API. Using this plug-in you can implement your own business logic for processing assertions, such as rejecting an assertion and returning a status code. This additional processing works together with standard processing of an assertion.
Note: For more information about status codes for authentication and disambiguation, see the SOA Security Manager Programming Guide for Java.
During authentication, SOA Security Manager first tries to process the assertion by mapping a user to its local user store. If SOA Security Manager cannot find the user, it calls the postDisambiguateUser method of the message consumer plug-in.
If the plug-in successfully finds the user, SOA Security Manager proceeds to the second phase of authentication. If the plug-in cannot map the user to a local user store, the plug-in returns a UserNotFound error. The plug-in can optionally use the redirect URL feature. If the message consumer plug-in is not configured, the redirect URLs are based on the error generated by the SAML authentication scheme.
During the second phase of authentication, SOA Security Manager calls the postAuthenticateUser method of the message consumer plug-in, if the plug-in is configured. If the method succeeds, SOA Security Manager redirects the user to the requested resource. If the method fails, you can configure the plug-in to send the user to a failure page. The failure page can be one of the redirect URLs that you can specify with the authentication scheme configuration.
Additional information about the message consumer plug-in can be found as follows:
To configure the plugin
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |