Running Policy Server as Service Provider (SP) in a Federation journey, how to achieve the following:

• Extract user attributes from the SAMLResponse assertion;
• Add a JWT token as HTTP Header to the protected application;

There are some options to achieve this, including the usage of CA API Gateway, or using ODBC flow, or Java Active Response, or using CA Access Gateway (SPS) AZ WebService (1).

A code sample can be used as a Java Active Response (2).

1. SAML SP assertion attributes as JWT token to backend Target app
   
   
2. Return JWT Token with Session Variables details within an active response