This repository has been archived by the owner on Apr 15, 2021. It is now read-only.
8. OpenStack and OSCM Federated Identity and SSO
The following diagram shows one possible solution for federated identity and SSO when OSCM is used as IaaS for OpenStack.
OSCM uses WS-Security with SAML token for its SOAP API, and relies on Metro web service stack (JAX-WS and WSIT for SOAP) which is a part of Glassfish. This is why OSCM may need an own SAML Token Issuer which is SOAP based, as shown in the diagram above.