A good approach for SiteMinder integration is to setup siteminder on the HTTP or App Server. Either on the Apache 2 frontal if there is one, or in Tomcat using filters if that exists for SiteMinder.
Then you can use an authenticator similar to AppServerTrustedAuthentication to trust what Apache has done. You then finally need to modify login.vm to redirect to the SiteMinder authentication pages. http://svn.xwiki.org/svnroot/xwiki/platform/core/trunk/xwiki-core/src/main/java/com/xpn/xwiki/user/impl/xwiki/AppServerTrustedAuthServiceImpl.java Ludovic Markus Lanthaler wrote: > Hi Sharan, > > XWiki currently supports LDAP and eXo. I'm currently working on OpenID > integration. I don't know how Siteminder works, but the current > authentication mechanism is very limited and would need some love. It is > currently limited to username & password based authentication (or at least a > emulation of that - like I'm using it for OpenID). > > Look at my OpenID patch to get some ideas: > http://jira.xwiki.org/jira/browse/XWIKI-2588 > > Do you have any specific questions? > > Best, > Markus > > > ----- Original Message ----- > From: <[EMAIL PROTECTED]> > To: <[email protected]> > Sent: Monday, August 25, 2008 11:04 PM > Subject: [gsoc] [xwiki-devs] Siteminder Integration > > > >> Hi! >> >> I am looking for some information on the supportablitlty of Xwiki with >> SSO for authentication. At this stage, I am exploring the options on >> how to set this configuration up. There is not much documentation >> available on the Xwiki site on information for integrating with SSO >> siteminder though a reference to siteminder is available on the site( >> http://platform.xwiki.org/xwiki/bin/view/AdminGuide/Authentication check >> under Custom Aunthentication). I was wondering if any of you could >> direct me towards more resources/documentation... >> >> Thanks. >> Sharan. >> >> >> ----------------------------------------- >> This communication is for informational purposes only. It is not >> intended as an offer or solicitation for the purchase or sale of >> any financial instrument or as an official confirmation of any >> transaction. All market prices, data and other information are not >> warranted as to completeness or accuracy and are subject to change >> without notice. Any comments or statements made herein do not >> necessarily reflect those of JPMorgan Chase & Co., its subsidiaries >> and affiliates. >> >> This transmission may contain information that is privileged, >> confidential, legally privileged, and/or exempt from disclosure >> under applicable law. If you are not the intended recipient, you >> are hereby notified that any disclosure, copying, distribution, or >> use of the information contained herein (including any reliance >> thereon) is STRICTLY PROHIBITED. Although this transmission and any >> attachments are believed to be free of any virus or other defect >> that might affect any computer system into which it is received and >> opened, it is the responsibility of the recipient to ensure that it >> is virus free and no responsibility is accepted by JPMorgan Chase & >> Co., its subsidiaries and affiliates, as applicable, for any loss >> or damage arising in any way from its use. If you received this >> transmission in error, please immediately contact the sender and >> destroy the material in its entirety, whether in electronic or hard >> copy format. Thank you. >> >> Please refer to http://www.jpmorgan.com/pages/disclosures for >> disclosures relating to UK legal entities. >> _______________________________________________ >> devs mailing list >> [email protected] >> http://lists.xwiki.org/mailman/listinfo/devs >> > > _______________________________________________ > devs mailing list > [email protected] > http://lists.xwiki.org/mailman/listinfo/devs > > -- Ludovic Dubost Blog: http://blog.ludovic.org/ XWiki: http://www.xwiki.com Skype: ldubost GTalk: ldubost _______________________________________________ devs mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/devs
