Thanks for your reply.
I just clicked the reply button to the email, without noticing that the "reply-to" is set to [EMAIL PROTECTED] I really didn't have any intentions to direct the question to any individual users at all. Appologize for that ... (Usually the reply-to address is set to jetspeed mailing list email address)
However I get a good idea from your answer. I am willing to create such "migrator", and would be very excited if that could help the community !
I am reading more about the J2 Security stuff. If you want to give me some quick pointers where I should look, that could help ...
Thanks,
Amit
----Original Message Follows----
From: Roger Ruttimann <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Shah Amit <[EMAIL PROTECTED]>, Jetspeed Users List <jetspeed-user@jakarta.apache.org>
Subject: Re: J2-SSO
Date: Tue, 01 Feb 2005 14:23:37 -0800
Please post questions to the list so that people can learn from other peoples issues and solutions.
SSO is used to insert credentials for external applications into a request. If a user isn't authenticated (logged in) it doesn't have access to the SSO API.
For your scenario you have to migrate your user table into Jetspeed-2 security tables. You could write a user synchronization portlet that reads your database and inserts new (no existing users) into jetspeed by calling into the security API. I think such a portlet would be of great benefit for the community since user migration is always an issue.
Roger
Shah Amit wrote:
Hi Roger and Amit,
Appreciate your helps ...
I have a pretty dumb question along the same lines. I only have one web application that I want to port to Jetspeed2. So I dont think SSO would make sense in such scenerio.
However, what do I need to do to authenticate?? ... I have my own user table with passwords that I am validating against. So do I need to translate that user table to the jetspeed security_xxx tables, or .... ???
Would really appreciate any help ...
Thanks, Amit
----Original Message Follows---- From: Roger Ruttimann <[EMAIL PROTECTED]> Reply-To: [EMAIL PROTECTED] To: Jetspeed Users List <jetspeed-user@jakarta.apache.org> Subject: Re: J2-SSO Date: Tue, 01 Feb 2005 09:33:56 -0800
With J2-SSO you can map Jetspeed users to application credentials.
If you have login pages but you like to bypass the login by providing the credentials you can use the SSOWebContent portlet or subclass the portlet and define in our implementation how the credentials should be passed to your login page.
The SSO Management portlet allows you to create sites (URL) to your login pages and assign remote credential for a J2 user or group. I found it handy to define a group, add users to it and then define remote credential for that group. Any user belonging to that group will obtain the remote credential from the SSO store.
I added some SSO documentation that can be found in design-docs/src/sso
Roger
Amit Soni wrote:
Hi all,
I already have three java based web application ready and all of them are using their own db. and all have their own user name and password now i want to integrate all of these applications in J2 and want to implement SSO within it. I mean all of these application have their own login page but don't want that login page but when i logged in jetspeed-2's login page it automatically logged in respective application. So can it be possible in j2 SSO? and if so then what i have to do for that .. so any one have idea about this then please help me..
Regards, Amit Soni
---------------------------------------------------------- Netcore Solutions Pvt. Ltd. Website: http://www.netcore.co.in Spamtraps: http://cleanmail.netcore.co.in/directory.html ----------------------------------------------------------
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
