We are migrating apps from TAM to OpenSSO. In TAM we have WEBSEAL junction and required attributes are passed as header to app by app basis. But In OpenSSO, Since all the apps are protected by agents. We can't restrict attributes by app by app basis. We have webproxy, OpenSSO and agents. Is there any way to HTTP filter, block sending attributes on app by app basis. Some apps need all attribute and some don't. Is there anyway to find the limit/filter the attributes being sent to apps.