Federation Security Services Guide › Identify WS-Federation Resource Partners at the Account Partner › Customizing Content in WS-Federation Assertions

Customizing Content in WS-Federation Assertions

The WS-Federation Assertion Generator produces SAML assertions. The assertions are used to authenticate users in a federation environment. You can customize the content of the SAML assertion by configuring an Assertion Generator plug-in. Using this plug-in, you can modify the assertion content for your business agreements between partners and vendors.

To use the WS-Federation Assertion Generator plug-in

1. Implement the plug-in class.

   A sample class, AssertionSample.java, can be found in sdk/samples/assertiongeneratorplugin.

2. Configure the Assertion Generator plug-in from the Advanced tab of the Resource Partner Properties dialog box.

   Note: Specify an Assertion Generator plug-in for each Resource Partner.

   1. In the Full Java Class Name field, enter the Java class name of the plug-in.

      For example, com.mycompany.assertiongenerator.AssertionSample

      A sample plug-in is included in the SDK. You can view the sample assertion plug-in at sdk/samples/assertiongeneratorplugin.

   2. Optionally, in the Parameters field, enter the string that gets passed to the plug-in as a parameter at run time.

      The string can contain any value; there is no specific syntax to follow.

For reference information about the WS-Federation Assertion Generator plug-in (method signatures, parameters, return values, data types), and also the new constructor for UserContext class, see the AssertionGeneratorPlugin interface in the Javadoc Reference. This information applies to the WS-Federation Assertion Generator as well as the SAML Assertion Generator.

For overview and conceptual information, see the SiteMinder Programming Guide for Java.