Hi Jose, It seems like there are few options (that come to my mind):
(1) The more "official" way: Create your own XMLUI Aspect which can handle the Cosign authentication. This would be similar to the existing EPerson Aspect (see the org.dspace.app.xmlui.aspect.eperson.* classes) which handles authentication via LDAP, Shib, etc. This XMLUI Aspect also uses the DSpace Authentication Plugins from org.dspace.authenticate.* to actually perform the authentication & report whether it was successful or not. For more info on creating aspects, see some of the XMLUI Customization guides here: https://wiki.duraspace.org/display/DSPACE/DSpaceResources#DSpaceResources-Guides The "official" way is the way the core Committers would likely do this, as it's something that would be supported across all DSpace sites, and actually uses the Authentication Plugins which also work for JSPUI, etc. But, if you just wanted to get it working for Michigan, then you could also choose... (2) The "unofficial" way: As you mentioned, Cocoon is really just a servlet. So, it is possible to run other servlets alongside it. So, you can run your existing cosign servlet alongside Cocoon as a completely separate servlet (e.g. at /webiso-login path). I think this would work as long as you were able to pass back some flag to let DSpace know the person authenticated correctly. (You've probably already done this in some way in your JSPUI implementation of this work...so, it likely would be similar logic to that) Again, that's just off the top of my head. Which way you choose is entirely up to you. Good luck, - Tim On 7/11/2011 8:36 AM, Blanco, Jose wrote: > Any suggestions? Really stuck here. > > *From:*Blanco, Jose [mailto:[email protected]] > *Sent:* Wednesday, July 06, 2011 3:09 PM > *To:* Mark Diggory > *Cc:* [email protected] > *Subject:* Re: [Dspace-tech] adding cosing to manakin > > Mark, I’m getting closer, now I can get the cosign page and login > successfully, but what I did is map the /webiso-login to the servlet Cocoon. > > <servlet-mapping> > > <servlet-name>Cocoon</servlet-name> > > <url-pattern>/webiso-login</url-pattern> > > </servlet-mapping> > > In the jsp environment I had it mapped to a specifc servlet that did > some special things, but I’m not sure how to do this in the xmlui > environment. In the xmlui area there is only one servlet – Cocoon. Where > do I put my jspui servlet code to handle auth? As you can tell I’m new > to Cocoon. > > Thank you! > > Jose > > *From:*[email protected] [mailto:[email protected]] *On Behalf Of > *Mark Diggory > *Sent:* Monday, June 27, 2011 8:26 PM > *To:* Blanco, Jose > *Cc:* [email protected] > *Subject:* Re: [Dspace-tech] adding cosing to manakin > > No, each webapp needs to list its needed dependencies separately. > Listing cosign as a dependency in dspace/pom.xml will only place it into > the commandline application lib directory. > > On Fri, Jun 24, 2011 at 8:33 AM, Blanco, Jose <[email protected] > <mailto:[email protected]>> wrote: > > Mark, the dspace/pom.xml is the only place that the jscosign is listed, > and it seems like it would hold for all the apps. > > Take a look. > > *From:*Mark Diggory [mailto:[email protected] > <mailto:[email protected]>] > *Sent:* Friday, June 24, 2011 1:48 AM > *To:* Blanco, Jose > *Cc:* [email protected] > <mailto:[email protected]> > *Subject:* Re: [Dspace-tech] adding cosing to manakin > > Yes, you need to look for the dependency for cosign in your jspui > pom.xml and add it to your xmlui pom.xml > > Best, > > Mark > > On Thu, Jun 23, 2011 at 12:00 PM, Blanco, Jose <[email protected] > <mailto:[email protected]>> wrote: > > I have cosign running in my jspui, and I'm trying to run it now in > xmlui, so I added the following to the xmui web.xml file: > > <filter> > <filter-name>Cosign Authentication Filter</filter-name> > <filter-class>edu.umich.auth.cosign.CosignAuthenticationFilterIII</filter-class> > <init-param> > <param-name>Cosign.ConfigurationFile</param-name> > <param-value>/l1/dspace/repository/dev/config/cosignConfigBlancoj.xml</param-value> > </init-param> > > <init-param> > <param-name>Auth.JAASConfigurationFile</param-name> > <param-value>/l/local/apache-tomcat/conf/jaas.conf</param-value> > </init-param> > > </filter> > > <servlet-mapping> > <servlet-name>webiso-login</servlet-name> > <url-pattern>/webiso-login</url-pattern> > </servlet-mapping> > > <filter-mapping> > <filter-name>Cosign Authentication Filter</filter-name> > <url-pattern>/webiso-login</url-pattern> > </filter-mapping> > > And I'm getting this error: > > SEVERE: Parse error in application web.xml file at > jndi:/blancoj.dev.deepblue.lib.umich.edu/WEB-INF/web.xml > <http://blancoj.dev.deepblue.lib.umich.edu/WEB-INF/web.xml> > java.lang.IllegalArgumentException: Filter mapping specifies an unknown > filter name Cosign Authentication Filter > at > org.apache.tomcat.util.digester.Digester.createSAXException(Digester.java:2726) > at > org.apache.tomcat.util.digester.Digester.createSAXException(Digester.java:2752) > at org.apache.tomcat.util.digester.Digester.endElement(Digester.java:1061) > at > com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.endElement(AbstractSAXParser.java:601) > at > com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanEndElement(XMLDocumentFragmentScannerImpl.java:1782) > at > com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl$FragmentContentDriver.next(XMLDocumentFragmentScannerImpl.java:2938) > at > com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl.next(XMLDocumentScannerImpl.java:648) > at > com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:511) > > > === > I don't kwow why it can't find it. It finds it just fine in jspui. Do I > need to change something in one of the pom.xml files? > > -Jose > > ------------------------------------------------------------------------------ > Simplify data backup and recovery for your virtual environment with vRanger. > Installation's a snap, and flexible recovery options mean your data is safe, > secure and there when you need it. Data protection magic? > Nope - It's vRanger. Get your free trial download today. > http://p.sf.net/sfu/quest-sfdev2dev > _______________________________________________ > DSpace-tech mailing list > [email protected] <mailto:[email protected]> > https://lists.sourceforge.net/lists/listinfo/dspace-tech > > > > > -- > Mark R. Diggory > @mire - www.atmire.com <http://www.atmire.com/> > 2888 Loker Avenue East - Suite 305 - Carlsbad - CA - 92010 > Esperantolaan 4 - Heverlee 3001 - Belgium > > > ------------------------------------------------------------------------------ > All the data continuously generated in your IT infrastructure contains a > definitive record of customers, application performance, security > threats, fraudulent activity and more. Splunk takes this data and makes > sense of it. Business sense. IT sense. Common sense.. > http://p.sf.net/sfu/splunk-d2d-c1 > _______________________________________________ > DSpace-tech mailing list > [email protected] <mailto:[email protected]> > https://lists.sourceforge.net/lists/listinfo/dspace-tech > > > > > -- > Mark R. Diggory > @mire - www.atmire.com <http://www.atmire.com/> > 2888 Loker Avenue East - Suite 305 - Carlsbad - CA - 92010 > Esperantolaan 4 - Heverlee 3001 - Belgium > > > > ------------------------------------------------------------------------------ > All of the data generated in your IT infrastructure is seriously valuable. > Why? It contains a definitive record of application performance, security > threats, fraudulent activity, and more. Splunk takes this data and makes > sense of it. IT sense. And common sense. > http://p.sf.net/sfu/splunk-d2d-c2 > > > > _______________________________________________ > DSpace-tech mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/dspace-tech ------------------------------------------------------------------------------ All of the data generated in your IT infrastructure is seriously valuable. Why? It contains a definitive record of application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-d2d-c2 _______________________________________________ DSpace-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-tech
