We have a need to integrate a server with our WebSphere environment that does not support LTPA. I found the blog post here and corresponding code to decode the information in an LTPA token. However, there's no code explaining the digital signature and how that's generated/validated. Does anyone have any information on how to generate an LTPA token in custom code?
You would need to specify how and what you want to integrate?
LTPA is a mechanism used by WebSphere and other IBM products (e.g lotus products) as a means of authentication (typically for a Single Sign on SSO)
If a WebSphere App Server (as an example) authenticates a user and the request say goes to a lotus product (which is part of the same domain), the lotus product identifies the user via the LTPA token which was generated by WAS.
The same applies to multiple WebSphere products too.
There are no public APIs for LTPA for users to work with and it is meant to be used by various IBM products.
HTH Manglu
Just because you use WebSphere and WebSphere uses LTPA for some forms of SSO, doesn't mean that you need to use LTPA on your non-WebSphere server. There are many standard ways to accomplish Single Sign on with WebSphere and other products. Can you provide more information about how this server is used in your environment? Does it host web applications? web services? J2EE RMI/EJBs? Does this other server need to communicate with end users directly? Does it just need to communicate with a WebSphere server acting as a client?