You create a token-generator implementation (for PingFederate 6.0 and higher) by implementing the TokenGenerator interface. The following Java packages needed, at a minimum, for implementing this interface:

  • org.sourceid.saml20.adapter.sp.authn
  • org.sourceid.saml20.adapter.gui
  • org.sourceid.saml20.adapter.conf
  • org.sourceid.wstrust.model
  • org.sourceid.wstrust.plugin
  • org.sourceid.wstrust.plugin.process
  • com.pingidentity.sdk

For each token-generator implementation, described under Shared interfaces, you must define the method:

SecurityToken generateToken(TokenContext attributeContext)

PingFederate invokes the generateToken() method during the processing of an STS request to perform necessary operations for generation of a security token. The type BinarySecurityToken is available and may be used to represent custom security tokens that can be transported as Base64-encoded data. The TokenContext contains subject data available for insertion into the generated security token.