Author: channa Date: Sun Jul 20 01:38:19 2008 New Revision: 19658 URL: http://wso2.org/svn/browse/wso2?view=rev&revision=19658
Log: Updated with details on how to trust root CA, which will cause error if shipped untrusted cert is used for infocard auth. Also added links for further reading. Modified: trunk/mashup/java/xdocs/identity.html Modified: trunk/mashup/java/xdocs/identity.html URL: http://wso2.org/svn/browse/wso2/trunk/mashup/java/xdocs/identity.html?rev=19658&r1=19657&r2=19658&view=diff ============================================================================== --- trunk/mashup/java/xdocs/identity.html (original) +++ trunk/mashup/java/xdocs/identity.html Sun Jul 20 01:38:19 2008 @@ -29,16 +29,19 @@ <p>The WSO2 Mashup Server utilizes the WSO2 <a href="http://wso2.org/project/solutions/identity/1.5/docs/">Identity -Solution</a> to provide two more user friendly means of authentication in -addition to the usual User ID and Password based login. Both OpenID and -InfoCard are fast becoming preferred means of authentication </p> - -<p>for users frustrated by the need to remember user ID and password -combinations for an increasing number of web sites and services that require -authentication. You can enable both options for users registering on your -WSO2 Mashup Server by updating your </p> +Solution</a> to provide two user friendly means of authentication in addition +to the traditional User ID and Password based login. Both OpenID and InfoCard +are fast becoming preferred means of authentication </p> + +<p>for users frustrated and concerned by the need to remember and manage User +ID and Password combinations for an increasing number of web sites and +services that require authentication.</p> -<p>server installation as described below.</p> +<p></p> + +<p>You can enable both OpenID and InfoCard based authentication for users +registering on your WSO2 Mashup Server by updating your server installation +as described below.</p> <h1>OpenID</h1> <img src="images/openid-logo.jpg"> @@ -107,12 +110,13 @@ overwriting the two existing files, is all you need to do. </p> <p>2. A keystore needs to be configured on your server. The default -configuration and keystore that ships with the mashup server will be -sufficient for testing CardSpace on your local system, but the parameters -hightlighted below need to be changed to match </p> - -<p>a valid certificate that you will need to obtain for your domain before -you allow external users to authenticate via InfoCards.</p> +configuration and keystore that ships with the Mashup Server will be +sufficient for testing CardSpace on your local system, but if you wish to +deploy the Mashup Server in a production environment, </p> + +<p>you need to obtain a valid certificate. The parameters hightlighted below +need to be changed to match the valid certificate that you will have obtained +for your domain before you can allow users to authenticate via InfoCards.</p> <p></p> @@ -185,12 +189,23 @@ Redistributable Package from <a href="http://www.microsoft.com/downloads/details.aspx?familyid=10cc340b-f857-4a14-83f5-25634c3bf043&displaylang=en">here</a> and install it to setup the CardSpace selector in your Windows based client. -Also, please make sure you're running MSIE 7.0.</p> +Also, please make sure you're running MSIE 7.0 or newer.</p> <p>2. Firefox user can use an Identity selector plugin of their choice.</p> -<p><br> -</p> +<p>3. If you are using the certificate that was shipped with the Mashup +Server, or another certificate from an untrusted CA for your testing, you +will need to trust the certificate of the root CA or the Identity Selector +will display an error saying it cannot verify <br> +the identity of the site.</p> +<ul> + <li>On MSIE, right click on the self registration or profile page, before + you chose to submit your InfoCard </li> + <li>Select Properties --> Certificates --> Certification Path </li> + <li>Select the certificate of the root CA </li> + <li>View Certificate </li> + <li>Install </li> +</ul> <h2>Using InfoCard</h2> @@ -230,9 +245,19 @@ <p><br> <img style="width: 1010px; height: 564px;" alt="Profile" -src="images/User_Profile.png"><br> -<br> -</p> +src="images/User_Profile.png"></p> + +<h1>Further Reading</h1> + +<p>For more details on OpenID and the advantages of using OpenID based +authentication on your Mashup Server, please refer to <a +href="http://wso2.org/library/3593">this article</a> on the WSO2 Oxygen +Tank.</p> + +<p>For an introduction to Windows CardSpace, read <a +href="http://msdn.microsoft.com/en-us/netframework/cc196951.aspx">this +article</a> at MSDN, which also contains a link to the CardSpace community +site, from where you can get access to a host of other resources InfoCard.</p> </div> <p>© WSO2 Inc.</p> _______________________________________________ Mashup-dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/mashup-dev
