Skip to end of metadata
Go to start of metadata

PicketLink AS7 Console and Extension

Along with the PicketLink 2.1.7.Final, two useful projects were released too:

Give them a try !


Reference Guide:

Download Files

Check our Installation Guide for more information about how to configure PicketLink with your JBoss Application Server v7 installation.

You will need two jar files :  PicketLink Core Jar  as well as a Bindings jar (based on the server)

PicketLink Core Jar:

PicketLink Core 2.1.7 Jar:

Bindings Jar:

Updating the PicketLink module in JBoss AS 7

In order to use this version in JBoss AS 7 you need to update the PicketLink module. Please take a look at the Installation Guide.

PicketLink Quickstarts (Example applications)

PicketLink provides some useful examples about using some core features. Give it a try:

Release Notes


  • [PLINK2-1] - signed logout request does not contain the "Destination" attribute
  • [PLINK2-6] - Picketlink forwards to /hosted for resources without auth-constraints
  • [PLINK2-7] - Method XMLSignatureUtil.sign(Document doc, Node nodeToBeSigned, keyPair, digestMethod, signatureMethod, referenceURI) sometimes doesn't work correctly
  • [PLINK2-10] - SAML Assertion parsing - AttributeValue with nested element
  • [PLINK2-11] - The PicketLink IDP behaves strangely if the index.jsp is changed to an index.html
  • [PLINK2-12] - SAML Response does not contain audience restriction
  • [PLINK2-17] - SAML2Handler also puts assertion from incoming request in the response
  • [PLINK2-19] - HTTP POST Binding when using JBAS7 + SSL + AJP + Apache Web Server
  • [PLINK2-21] - ClassCastException deploying against PLINK 2.1.6
  • [PLINK2-35] - Wrong logging on TokenTimeout configuration
  • [PLINK2-36] - PicketLink STS chokes on WS-Policy 1.5 tags
  • [PLINK2-37] - WSTrust parsing should consider RequestedUnattachedReference
  • [PLINK2-39] - AuthnRequest ProtocolBinding Issues
  • [PLINK2-40] - Swallowed Exception generating SAML response document results in poor error reporting
  • [PLINK2-81] - PicketLink based SP's need to support different login and logout URLs


  • [PLINK2-55] - Properly support SAML 2.0 Assertions for attributes with multiple values

Feature Request

  • [PLINK2-59] - PicketLink STS should use the picketlink.xml file to load the configurations.
  • [PLINK2-64] - SP SAML Handler to put IDP Assertion Into Http Session
  • [PLINK2-69] - support SessionIndex in saml:AuthnStatement
  • [PLINK2-85] - Support SessionIndex when issuing assertions and logout requests
  • [PLINK2-88] - JAXP Factories may need to use the CL of the class in TCCL


  • [PLINK2-83] - SAML2AuthenticationHandler should be able to create multivalued attibute statement
  • [PLINK2-84] - Test AssertionUtil->getRoles() should consider multi-vauled attribute statement
  • [PLINK2-86] - PicketLink IDP: make /hosted configurable

Additional Information

Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.