Thanks for this.
It turns out that to make tomcat carry over the HHTPServerRequest, you have to
add the parameter tomcatAuthentication="false" to the ajp connector in tomcat's
server.xml config:
<!-- Define an AJP 1.3 Connector on port 8009 -->
<Connector port="8009" protocol="AJP/1.3" redirectPort="8443"
URIEncoding="UTF-8" tomcatAuthentication="false" />
Then, once you've logged in via your SSO, using request.getRemoteUser in the
authentication files (such as
org.dspace.authenticate.LDAPHierarchicalAuthentication.java) get's the
authenticated userID.
Ian
------------
Ian Wellaway
Senior System Support & Development Officer - Enterprise Applications
(Wednesdays only)
&
Technical Developer, Open Exeter - Infrastructure Systems (Monday-Tuesday,
Thursday-Friday)
Exeter IT
Room 54
Laver Building
University of Exeter
EX4 4QE
UK
tel +44 1392 722852
-----Original Message-----
From: [email protected] [mailto:[email protected]] On Behalf Of helix84
Sent: 27 November 2012 18:06
To: Wellaway, Ian
Cc: [email protected]
Subject: Re: [Dspace-tech] Dspace with SSO - request.getRemoteUser
On Tue, Nov 27, 2012 at 5:55 PM, Wellaway, Ian <[email protected]>
wrote:
> Any ideas what is stopping the code getting the SSO userID.
I don't think it's anything on the Tomcat (DSpace) side:
http://docs.oracle.com/javaee/6/api/javax/servlet/http/HttpServletRequest.html#getRemoteUser()
Regards,
~~helix84
Compulsory reading: DSpace Mailing List Etiquette
https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette
------------------------------------------------------------------------------
Keep yourself connected to Go Parallel:
BUILD Helping you discover the best ways to construct your parallel projects.
http://goparallel.sourceforge.net
_______________________________________________
DSpace-tech mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dspace-tech
List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette
