From: <glassfish_at_javadesktop.org>
Date: Sat, 24 Jan 2009 11:01:11 PST

Hi,

this might be the the same issue as https://wsit.dev.java.net/issues/show_bug.cgi?id=1083.
I've looked in the code of the com.sun.xml.ws.security.trust.impl.DefaultSAMLTokenProvider, it seems that the code to add the attributes to the token is commented out.

Regarding the DisplayToken:

The DisplayToken generated by Metro
[code]
<RequestedDisplayToken:RequestedDisplayToken xmlns="http://schemas.xmlsoap.org/ws/2005/05/identity" xmlns:RequestedDisplayToken="http://schemas.xmlsoap.org/ws/2005/05/identity">
        <DisplayToken>
            <DisplayClaim Uri="http://namespace/localPart" xmlns="" xmlns:ns12="http://schemas.xmlsoap.org/ws/2005/05/identity">
                <ns12:DisplayTag>localPart</ns12:DisplayTag>
                <ns12:DisplayValue>string1</ns12:DisplayValue>
            </DisplayClaim>
            <DisplayClaim Uri="http://sun.com/token-requestor" xmlns="" xmlns:ns12="http://schemas.xmlsoap.org/ws/2005/05/identity">
                <ns12:DisplayTag>token-requestor</ns12:DisplayTag>
                <ns12:DisplayValue>authenticated</ns12:DisplayValue>
            </DisplayClaim>
        </DisplayToken>
    </RequestedDisplayToken:RequestedDisplayToken>
[/code]

is not correct:
 - The default namespace declaration for DisplayClaim is an empty string.
 - Regarding http://schemas.xmlsoap.org/ws/2005/05/identity/Identity_Selector_Interoperability_Profile_V1.5.pdf DisplayToken must have a xml:lang attribute.

regards
robert
[Message sent by forum member 'wierob' (wierob)]

http://forums.java.net/jive/thread.jspa?messageID=328021