Do we have sample policies for WS-Federation SSO? I am looking for policies where API Gateway is used in Authenthication Domain to issue SAML token and also for API Gateway which is used in Authorization domain to verify the SAML Token.
I'm not aware of any sample policies for this. There is an assertion specifically designed for WS-Federation, to do token exchange and retrieval, but frankly, although this assertion has been in the Gateway since the early days, I have never actually used it. See Use WS-Federation Credential Assertion - CA API Gateway - 9.1 - CA Technologies Documentation for details. That might help explain it more.