Be the first to like this
At SUVA we come across various heterogeneous IT landscapes based on different vendors and technologies. Integrating all these peers brought up some challenging questions relating to security topics like company wide user-propagation (SSO). We solved these tasks with a kit of custom mediators, controlled by a set of custom sequences. Our security mediators interoperate with
SAML1.1 to SAP, SapAssertionToken from SAP to ESB
Custom-Token from/to MS Sharepoint and MS.NET
Custom-Token from/to Java Systems
BasicAuth bridge to WSSUsernameToken
BasicAuth authenticator to SAML 1.1 and custom-tokens.
This allowed us to enhance each ESB-Proxy with a highly customizable security extension by just adding three lines of code to the proxy-service definition. It is simple to enhance with additional standardized or custom security features. This session focuses on how the WSO2 ESB acts as a company wide security intermediary that liberates our systems from dealing with end-to-end security and standards they might not support.