Hey,
I am trying to authenticate users with Require WS-Security Password Digest Credentials Assertion assertion, however writing one assertion for each user seems not best practice to me. So, my questions:
1) Is there any assertion or configuration of above assertion that enables to authenticate several users defined in internal identity providers? (Digest is crucial for me in any solution.)
2) What is the correct way of using ${secpass.*.plaintext} ? I tried this directly for one of the username defined in the internal identity providers, but authentication did not success. If there is no way of authenticating internal identity providers or group of IIPs with single assertion(1st question), at least password should not be seen as plaint text inside of the assertion.
Thanks in advance,
#digest #iip #wss