2 Replies Latest reply on Jul 3, 2008 2:42 AM by carstenrudat

Question on SSO (OpenSSO)

carstenrudat Apr 15, 2008 3:44 PM

Hi all,

now I have OpenSSO running as as SSO-Server for JBoss Portal 2.6.4.GA. I uncommented the

<Valve className="org.jboss.portal.identity.sso.opensso.OpenSSOAuthenticationValve"
 loginURL="http://myhost.genloop.com:8080/opensso"
 logoutURL="http://myhost.genloop.com:8080/opensso/UI/Logout"
 appendLoginGoto="true"
 appendLogoutGoto="true"
 authType="FORM"
 />


in this jboss-portal-ha.sar/portal-server.war/WEB-INF/context.xml.

Now, when I call myhost.genloop.com:8080/portal, I have to log in and SSO works.
But, I would like to log in only, if I use the login-link (in the upper right corner) and I have currently no idea how I can configure the valve, the portal, ... to do so?! Could you give me a hint?

Thanks,
Carsten

1. Re: Question on SSO (OpenSSO)

rivetlogic May 6, 2008 1:10 PM (in response to carstenrudat)

Hi,

From your post it looks like the default portal has some security-constraint.
If this is to open to unauthenticated users , you shouldn't be forced to login.

-Shagul
Actions
2. Re: Question on SSO (OpenSSO)

carstenrudat Jul 3, 2008 2:42 AM (in response to carstenrudat)

Hi Shagul,

I just read that post...

No, I haven't a security constraint on the default portlet.

I tried to install a very new and clean JBoss Portal 2.6.5 and I can see the default portal. Than I turned on the OpenSSO-Valve in the jboss-portal-ha.sar/portal-server.war/WEB-INF/context.xml and again, I will be redirected to OpenSSO-Login-Page as soon as I call myhost.com:8080/portal.

Interestingly, the back-redirect-url is something like ../auth/default/... ?!

Any ideas, how to see the first page without log in using OpenSSO?

Thanks,
Carsten
Actions

Go to original post