6 Replies Latest reply on Oct 25, 2007 6:39 PM by nijiworld

    need a easy solution to integrate sso into jboss portal

    nijiworld
    nijiworld Oct 24, 2007 7:38 PM

      hello buddy
      I have download jboss portal 2.6.1 bundled with jboss AS 4.2.1
      considering i am a beginner in this field, so can you suggest a easy way to realise the single sign-on at jboss portal(CAS, JOSSO or......)
      the more details the better, because i have a link from my portal to an application that need logon on,too

      thanks

      • 1736 Views
      • Tags:
        • 1. Re: need a easy solution to integrate sso into jboss portal
          soon5
          soon5 Oct 25, 2007 1:52 AM (in response to nijiworld)

          Hy,

          You can try to enable SSO in the Tomcat Web Deployer.

          Go to the ${JBOSS_ROOT}\server\default\deploy\jboss-web.deployer Folder, and open the server.xml File.

          There is a Line:



          Originaly this line is in Comments. Remove the Comment Markers, save the XML, restart the Server and try again.

          Greetings Soon5

            • Actions
          • 2. Re: need a easy solution to integrate sso into jboss portal
            soon5
            soon5 Oct 25, 2007 1:53 AM (in response to nijiworld)

            Sorry, forgot to put the Line into Code Blocks:

            <Valve className="org.apache.catalina.authenticator.SingleSignOn" />


            Greetings Soon5

              • Actions
            • 3. Re: need a easy solution to integrate sso into jboss portal
              lucboudreau
              lucboudreau Oct 25, 2007 10:30 AM (in response to nijiworld)

              It is possible to use CAS to authenticate your users. It takes a bit of coding and much research, but the ACEGI framework, which can interact with CAS servers, can be integrated in the portal's login stack.

              I won't give you all the details here since 1. it's long to explain and 2. we have a custom CAS implementation which required custom classes and thus would be useless to you.

              I can tell you this though. Look in the Pentaho BI platform documentation. They use the portal as a front-end and provide people with classes to make the portal work with CAS servers.

                • Actions
              • 4. Re: need a easy solution to integrate sso into jboss portal
                lucboudreau
                lucboudreau Oct 25, 2007 10:35 AM (in response to nijiworld)

                Here's my login stack. This might be useful.

                <login-module code="ca.umontreal.regis.security.jboss.JbossAcegiCASLoginModule" flag="required">
 <module-option name="singletonId">springRealm</module-option>
 <module-option name="key">***</module-option>
 <module-option name="authenticationManager">authenticationManager</module-option>
</login-module>

<login-module code="ca.umontreal.regis.security.jboss.SynchronizingLoginModule" flag="optional">
 <module-option name="synchronizeIdentity">true</module-option>
 <module-option name="synchronizeRoles">true</module-option>
 <module-option name="additionalRole">Authenticated</module-option>
 <module-option name="defaultAssignedRole">User</module-option>
 <module-option name="userModuleJNDIName">java:/portal/UserModule</module-option>
 <module-option name="roleModuleJNDIName">java:/portal/RoleModule</module-option>
 <module-option name="membershipModuleJNDIName">java:/portal/MembershipModule</module-option>
 <module-option name="userProfileModuleJNDIName">java:/portal/UserProfileModule</module-option>
</login-module>


                  • Actions
                • 5. Re: need a easy solution to integrate sso into jboss portal
                  soshah
                  soshah Oct 25, 2007 10:47 AM (in response to nijiworld)

                  Guys-

                  JBoss Portal has out-of-the-box integration with CAS and JOSSO starting with 2.6.2, so that home grown mechanisms don't have to be developed.

                  Please see here for details: http://docs.jboss.com/jbportal/v2.6.2/referenceGuide/html/sso.html

                  Thanks

                    • Actions
                  • 6. Re: need a easy solution to integrate sso into jboss portal
                    nijiworld
                    nijiworld Oct 25, 2007 6:39 PM (in response to nijiworld)

                    thanks friends
                    i will read it after my thanks:)

                    however, in ths referenceGuide
                    it mentioned:

                    The steps below assume that CAS server and JBoss Portal will be deployed on the same JBoss Application
                    Server instance. CAS will be configured to leverage identity services exposed by JBoss Portal to perform
                    authentication. Procedure may be sligtly different for other deployment scenarios. Both JBoss Portal and
                    CAS will need to be configured to authenticate against same database or LDAP server.

                    what i concentrate is how CAS configured in jboss portal, for the users who are new in this field will want to know it very much:)

                    And what's more, in this wiki
                    http://wiki.jboss.org/wiki/Wiki.jsp?page=CASSSOFrameworkIntegration
                    there was a error when i follow it at the step 4, when i type ant deploy-cas, a message will show that libraries in thirdpart folder not found, when a commentted them out, error
                    \core\biuld.xml:91: refrence apache.ant.classpath not found
                    should i add ant into CLASSPATH?i have added it to ANT_HOME

                    thanks for help, i want to realise SSO with CAS on jboss portal, is it ok for 2.6.1? or i must download the 2.6.2? the version i have is bundled with jboss AS

                      • Actions