Federation SOAP Web Service

The DirX Access federation Web service provides a WS‑Trust‑based STS:

  • The STS WS functionality facilitates security token issuance based on saml:Assertion objects.

Note that WS‑Trust defines vocabulary required for the STS WS functionality. There are no WSDLs published by OASIS or other relevant standards bodies that provide a standard WSDL for an STS WS. Thus, the DirX Access federation WS uses its own WSDL based on standard vocabulary defined by OASIS (where available – mainly WS‑Trust).

Covered Abstractions

The federation WS allows managing security tokens (representing security assertions, especially authentication statements):

  • The STS port of the federation WS allows working with security token abstractions, especially SAML assertions.

Supported WS Ports

The DirX Access federation WS provides the following service ports:

Security Token Managing

A WS port to process security tokens. This port provides a WS‑Trust Security Token Service (STS). Its WSDL can be obtained via

http(s)://{hostname or IP address of DirX Access Server:tcpPort}/wsfed/sts?wsdl

Supported Bindings

The federation WS supports SOAP over HTTP as a binding. SOAP 1.2 in document style is used.

Supported Port Types and Operations

The portType elements in the federation WS WSDL correspond to the described WS port. They support the following operations:

Security Token Managing

Allows processing security tokens (based on the saml:Assertion abstraction) through the following operations:

  • IssueSecurityToken: issue a security token (SAML assertion)

Supported Messages

The federation WS WSDL specifies the details about the message syntax.