This represents a credential that contains Single Sign On (SSO) data that can be retrieved from an authenticated Subject.
Authentication providers that intend to provide access to the Single Sign On data to the components in the server should add a public credential that implements this interface after successfully authenticating the user.
The client could then access the SSO token using
javax.security.auth.Subject jaasSubject = csiSubject.getJAASSubject();
Set<SSOTokenCredential> credentials = jaasSubject.getPublicCredentials(SSOTokenCredential.class);
SSOTokenCredential credential = credentials.toArray(new SSOTokenCredential[0])[0];