v2.1.7.Final - PicketLink

PicketLink AS7 Console and Extension

Along with the PicketLink 2.1.7.Final, two useful projects were released too:

Give them a try !

Check our Installation Guide for more information about how to configure PicketLink with your JBoss Application Server v7 installation.

You will need two jar files : PicketLink Core Jar as well as a Bindings jar (based on the server)

Server	Jar File	Comments
JBoss AS 7.1.x	https://repository.jboss.org/nexus/content/groups/public/org/picketlink/distribution/picketlink-jbas7/2.1.7.Final/picketlink-jbas7-2.1.7.Final.jar
JBoss AS 6.x or JBoss AS 5.x	https://repository.jboss.org/nexus/content/groups/public/org/picketlink/distribution/picketlink-jbas5/2.1.7.Final/picketlink-jbas5-2.1.7.Final.jar
Apache Tomcat 6.x or 5.x	https://repository.jboss.org/nexus/content/groups/public/org/picketlink/distribution/picketlink-tomcat5/2.1.7.Final/picketlink-tomcat5-2.1.7.Final.jar

In order to use this version in JBoss AS 7 you need to update the PicketLink module. Please take a look at the Installation Guide.

PicketLink provides some useful examples about using some core features. Give it a try:

[ PLINK2-1 ] - signed logout request does not contain the "Destination" attribute
[ PLINK2-6 ] - Picketlink forwards to /hosted for resources without auth-constraints
[ PLINK2-7 ] - Method XMLSignatureUtil.sign(Document doc, Node nodeToBeSigned, keyPair, digestMethod, signatureMethod, referenceURI) sometimes doesn't work correctly
[ PLINK2-10 ] - SAML Assertion parsing - AttributeValue with nested element
[ PLINK2-11 ] - The PicketLink IDP behaves strangely if the index.jsp is changed to an index.html
[ PLINK2-12 ] - SAML Response does not contain audience restriction
[ PLINK2-17 ] - SAML2Handler also puts assertion from incoming request in the response
[ PLINK2-19 ] - HTTP POST Binding when using JBAS7 + SSL + AJP + Apache Web Server
[ PLINK2-21 ] - ClassCastException deploying against PLINK 2.1.6
[ PLINK2-35 ] - Wrong logging on TokenTimeout configuration
[ PLINK2-36 ] - PicketLink STS chokes on WS-Policy 1.5 tags
[ PLINK2-37 ] - WSTrust parsing should consider RequestedUnattachedReference
[ PLINK2-39 ] - AuthnRequest ProtocolBinding Issues
[ PLINK2-40 ] - Swallowed Exception generating SAML response document results in poor error reporting
[ PLINK2-81 ] - PicketLink based SP's need to support different login and logout URLs

[ PLINK2-55 ] - Properly support SAML 2.0 Assertions for attributes with multiple values

[ PLINK2-59 ] - PicketLink STS should use the picketlink.xml file to load the configurations.
[ PLINK2-64 ] - SP SAML Handler to put IDP Assertion Into Http Session
[ PLINK2-69 ] - support SessionIndex in saml:AuthnStatement
[ PLINK2-85 ] - Support SessionIndex when issuing assertions and logout requests
[ PLINK2-88 ] - JAXP Factories may need to use the CL of the class in TCCL

[ PLINK2-83 ] - SAML2AuthenticationHandler should be able to create multivalued attibute statement
[ PLINK2-84 ] - Test AssertionUtil->getRoles() should consider multi-vauled attribute statement
[ PLINK2-86 ] - PicketLink IDP: make /hosted configurable

PicketLink Console for the JBoss Application Server was released. Give it a try.
PicketLink Extension/Subsystem for the JBoss Application Server was released.