Ok. thank you. -- L. Marcelo
On Mon, May 24, 2010 at 12:39 PM, Thomas Mortagne <[email protected]> wrote: > On Mon, May 24, 2010 at 17:04, Luiz Marcelo Serique > <[email protected]> wrote: >> Ok i'll do this research, but remember i need that the SSO System >> performs the login, this is transparent to our users, they just know >> the sso system login form, they will never use the xwiki login form. > > Yes that's the definition of "SSO", in all authenticator i listed the > users are automatically authenticated without having to fill any form. > >> >> thank you. >> >> -- >> L. Marcelo >> >> >> >> On Mon, May 24, 2010 at 11:47 AM, Thomas Mortagne >> <[email protected]> wrote: >>> On Mon, May 24, 2010 at 16:26, Luiz Marcelo Serique >>> <[email protected]> wrote: >>>> Hi, >>>> >>>> I'm new on list, and new on xwiki too, we have successfully deployed >>>> the XWiki Enterprise 2.3 in our company, but there is some pre >>>> requisites that we must accomplish to integrate the system to our SSO >>>> aplication. The SSO is a very simple aplication that stores all users >>>> and groups on a independent database, the SSO system have a interface >>>> that shows, like a catalog, all the internal systems that a specific >>>> person (logged in person) has access. The archictecture is very >>>> simple, and almost time insecure, passing by GET parameter the >>>> credentials to other systems in php, java, python, etc..., but this is >>>> another point that we here have to discuss and adjust adjust. >>>> >>>> To provide this SSO to xwiki i was wondering create a Filter that >>>> verify those GET parameters and programmatically authenticates the >>>> user to XWiki and use the MyFormAuthenticator.authenticate() to >>>> perform the login. >>>> >>>> But here come the question, the authenticate method needs a >>>> XWikiContext object, is it possible to have this context in a Servlet >>>> Filter? >>>> >>>> And you guys have some suggestions about my strategy? Any alternative >>>> to what i want achieve? >>> >>> The canonical way to implement SSO authentication is writing a Java >>> class extending XWikiAuthServiceImpl. >>> >>> You can find some useful abstract for SSO authentication on >>> http://svn.xwiki.org/svnroot/xwiki/contrib/sandbox/xwiki-authentication-puma/src/main/java/com/xwiki/authentication/. >>> By extending AbstractSSOAuthServiceImpl you just need to provide it >>> proper information form you server and it will take care of properly >>> synchronize user infos and membership (i need to integrate this in >>> standard <hen i find some time). >>> >>> There is also several examples of SSO authenticators on >>> http://svn.xwiki.org/svnroot/xwiki/contrib/sandbox/ (NTLM, trust, >>> PUMA, ...). Only PUMA based one is using AbstractSSOAuthServiceImpl >>> (that's the last one I wrote and finally decided to write some common >>> tools for following authenticators ;)). >>> >>>> >>>> -- >>>> L. Marcelo >>>> _______________________________________________ >>>> devs mailing list >>>> [email protected] >>>> http://lists.xwiki.org/mailman/listinfo/devs >>>> >>> >>> >>> >>> -- >>> Thomas Mortagne >>> _______________________________________________ >>> devs mailing list >>> [email protected] >>> http://lists.xwiki.org/mailman/listinfo/devs >>> >> _______________________________________________ >> devs mailing list >> [email protected] >> http://lists.xwiki.org/mailman/listinfo/devs >> > > > > -- > Thomas Mortagne > _______________________________________________ > devs mailing list > [email protected] > http://lists.xwiki.org/mailman/listinfo/devs > _______________________________________________ devs mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/devs
