...
- IDP / STS
The IDP / STS leverages the Apache CXF STS. Fediz ships a fully configured IDP STS where users/claims are managed in files. The IDP STS can be configured to integrate an LDAP directory.
...
A claim is a statement made about a client. The concept of claim is described in the WS-Trust specification. Claims information of an authenticated subject can ba be carried in a Attribute Statement of a SAML token even WS-Trust doesn't mandate the usage of SAML token to carry this information.
Role based Access Control (RBAC) is a subet of Claims based Access Control. The roles of a user/subject is just a claim statement.
Resource and Requestor IDP
tbd