Re: SSO integration

[weyerma]

hmmm... if i execute:

http://server.ch:5080/openmeetings/services/UserService/setUserObjectMainLandingZone?SID=c90906956d51e3fd15c163822f66d151&externalUserId=101&externalUserType=juniper
i get:

 <externalUserId>101</externalUserId>
  <externalUserType>juniper</externalUserType>
</org.openmeetings.app.persistence.beans.basic.RemoteSessionObject>
DEBUG 02-23 10:00:10.442 Sessionmanagement.java 3277565 341  
org.openmeetings.app.data.basic.Sessionmanagement  
[http-0.0.0.0-5080-1] - updateUser User SID:  
c90906956d51e3fd15c163822f66d151
DEBUG 02-23 10:00:10.445 ManageCryptStyle.java 3277568 22  
org.openmeetings.utils.crypt.ManageCryptStyle [http-0.0.0.0-5080-1] -  
getInstanceOfCrypt:  
org.openmeetings.utils.crypt.ManageCryptStyle@670b87aa
DEBUG 02-23 10:00:10.446 ManageCryptStyle.java 3277569 24  
org.openmeetings.utils.crypt.ManageCryptStyle [http-0.0.0.0-5080-1] -  
getInstanceOfCrypt:  
org.openmeetings.app.data.basic.Configurationmanagement@344122b9
DEBUG 02-23 10:00:10.446 ManageCryptStyle.java 3277569 31  
org.openmeetings.utils.crypt.ManageCryptStyle [http-0.0.0.0-5080-1] -  
configKeyCryptClassName: org.openmeetings.utils.crypt.MD5Implementation


if i execute:

http://server.ch:5080/openmeetings/services/UserService/setUserObject?SID=c90906956d51e3fd15c163822f66d151&username=admin&externalUserId=101&externalUserType=juniper

the id is always 0...

DEBUG 02-23 10:01:05.304 UserWebService.java 3332427 422  
org.openmeetings.axis.services.UserWebService [http-0.0.0.0-5080-1] -  
UserService.setUserObject
DEBUG 02-23 10:01:05.309 UserWebService.java 3332432 432  
org.openmeetings.axis.services.UserWebService [http-0.0.0.0-5080-1] -  
username admin
DEBUG 02-23 10:01:05.310 UserWebService.java 3332433 433  
org.openmeetings.axis.services.UserWebService [http-0.0.0.0-5080-1] -  
firstname null
DEBUG 02-23 10:01:05.310 UserWebService.java 3332433 434  
org.openmeetings.axis.services.UserWebService [http-0.0.0.0-5080-1] -  
lastname null
DEBUG 02-23 10:01:05.310 UserWebService.java 3332433 435  
org.openmeetings.axis.services.UserWebService [http-0.0.0.0-5080-1] -  
profilePictureUrl null
DEBUG 02-23 10:01:05.311 UserWebService.java 3332434 436  
org.openmeetings.axis.services.UserWebService [http-0.0.0.0-5080-1] -  
email null
DEBUG 02-23 10:01:05.313 UserWebService.java 3332436 443  
org.openmeetings.axis.services.UserWebService [http-0.0.0.0-5080-1] -  
xmlString  
<org.openmeetings.app.persistence.beans.basic.RemoteSessionObject>
  <username>admin</username>
  <externalUserId>0</externalUserId>
  <externalUserType></externalUserType>
</org.openmeetings.app.persistence.beans.basic.RemoteSessionObject>


Zitat von "seba.wag...@gmail.com" <seba.wag...@gmail.com>:

<externalUserId>0</externalUs
erId>
=> you did not set any value for the externalUserId, set it to 1 oder
whatever ... I think the externalUserId can also be a string (or for
example in our facebook integration the externalUserId is a user hash from
facebook)
BTW the facebook integration of OpenMeetings is using exactly the same API
call ;)

Sebastian


2012/2/23 weyerma <thomas.weyerm...@nativenet.ch>

I`m trying to set all the vars but still get the error...
Is there something wrong with my configuration ?

</org.openmeetings.app.**persistence.beans.basic.**RemoteSessionObject>
DEBUG 02-23 09:18:41.221 Sessionmanagement.java 788344 341
org.openmeetings.app.data.**basic.Sessionmanagement [http-0.0.0.0-5080-1]
- updateUser User SID: f40e04788904d82a01025b89cf9ede**68
DEBUG 02-23 09:18:48.890 UserWebService.java 796013 422
org.openmeetings.axis.**services.UserWebService [http-0.0.0.0-5080-1] -
UserService.setUserObject
DEBUG 02-23 09:18:48.897 UserWebService.java 796020 432
org.openmeetings.axis.**services.UserWebService [http-0.0.0.0-5080-1] -
username admin
DEBUG 02-23 09:18:48.898 UserWebService.java 796021 433
org.openmeetings.axis.**services.UserWebService [http-0.0.0.0-5080-1] -
firstname null
DEBUG 02-23 09:18:48.898 UserWebService.java 796021 434
org.openmeetings.axis.**services.UserWebService [http-0.0.0.0-5080-1] -
lastname null
DEBUG 02-23 09:18:48.898 UserWebService.java 796021 435
org.openmeetings.axis.**services.UserWebService [http-0.0.0.0-5080-1] -
profilePictureUrl null
DEBUG 02-23 09:18:48.899 UserWebService.java 796022 436
org.openmeetings.axis.**services.UserWebService [http-0.0.0.0-5080-1] -
email null
DEBUG 02-23 09:18:48.901 UserWebService.java 796024 443
org.openmeetings.axis.**services.UserWebService [http-0.0.0.0-5080-1] -
xmlString <org.openmeetings.app.**persistence.beans.basic.**
RemoteSessionObject>
 <username>admin</username>
 <externalUserId>0</**externalUserId>
 <externalUserType></**externalUserType>
</org.openmeetings.app.**persistence.beans.basic.**RemoteSessionObject>


 <externalUserId>101</**externalUserId>
 <externalUserType>juniper</**externalUserType>
</org.openmeetings.app.**persistence.beans.basic.**RemoteSessionObject>
DEBUG 02-23 09:20:27.089 Sessionmanagement.java 894212 341
org.openmeetings.app.data.**basic.Sessionmanagement [http-0.0.0.0-5080-1]
- updateUser User SID: f40e04788904d82a01025b89cf9ede**68
DEBUG 02-23 09:20:27.093 ManageCryptStyle.java 894216 22
org.openmeetings.utils.crypt.**ManageCryptStyle [http-0.0.0.0-5080-1] -
getInstanceOfCrypt: org.openmeetings.utils.crypt.**
ManageCryptStyle@670b87aa
DEBUG 02-23 09:20:27.093 ManageCryptStyle.java 894216 24
org.openmeetings.utils.crypt.**ManageCryptStyle [http-0.0.0.0-5080-1] -
getInstanceOfCrypt: org.openmeetings.app.data.**
basic.Configurationmanagement@**344122b9
DEBUG 02-23 09:20:27.094 ManageCryptStyle.java 894217 31
org.openmeetings.utils.crypt.**ManageCryptStyle [http-0.0.0.0-5080-1] -
configKeyCryptClassName: org.openmeetings.utils.crypt.**MD5Implementation

DEBUG 02-23 09:22:23.310 ErrorService.java 1010433 42
org.openmeetings.app.remote.**ErrorService [NioProcessor-3] - errorid,
language_id: -1|1
DEBUG 02-23 09:22:23.311 ErrorService.java 1010434 46
org.openmeetings.app.remote.**ErrorService [NioProcessor-3] -
eValues.getFieldvalues_id() = 334
DEBUG 02-23 09:22:23.312 ErrorService.java 1010435 48
org.openmeetings.app.remote.**ErrorService [NioProcessor-3] -
eValues.getErrorType() = org.openmeetings.app.**persistence.beans.basic.**
ErrorType@6239b125


Zitat von "seba.wag...@gmail.com" <seba.wag...@gmail.com>:

 The params in the SOAP API call
http://incubator.apache.org/**openmeetings/UserService.html#**
setUserObjectMainLandingZone<http://incubator.apache.org/openmeetings/UserService.html#setUserObjectMainLandingZone>

are not optional, you have to set an externalUserId and type parameter not
just the SID.

Sebastian

2012/2/22 weyerma <thomas.weyerm...@nativenet.ch**>

 ok, i do the following to test:

for the SID:
http://server.ch:5080/****openmeetings/services/****
UserService/getSession<http://server.ch:5080/**openmeetings/services/**UserService/getSession>
<http://**server.ch:5080/openmeetings/**services/UserService/**
getSession<http://server.ch:5080/openmeetings/services/UserService/getSession>
>

<ns:getSessionResponse><ns:****return xsi:type="ax21:Sessiondata"><****
ax21:id>73</ax21:id><ax21:****language_id xsi:nil="true"/><ax21:****
organization_id
xsi:nil="true"/><ax21:refresh_****time>2012-02-22</ax21:**
refresh_**time><ax21:**sessionXml
xsi:nil="true"/><ax21:session_****id>****b934751f5f23b5e2c979a73c9fbd7c*
***
f3</ax21:session_id><ax21:****starttermin_time>2012-02-22</****
ax21:starttermin_time><ax21:****storePermanent
xsi:nil="true"/><ax21:user_id xsi:nil="true"/></ns:return></****
ns:getSessionResponse>


for login:
http://server.ch:5080/****openmeetings/services/****
UserService/loginUser?SID=<http://server.ch:5080/**openmeetings/services/**UserService/loginUser?SID=>
****b934751f5f23b5e2c979a73c9fbd7c****f3&username=admin&userpass=***
*password<http://server.ch:**5080/openmeetings/services/**
UserService/loginUser?SID=**b934751f5f23b5e2c979a73c9fbd7c**
f3&username=admin&userpass=**password<http://server.ch:5080/openmeetings/services/UserService/loginUser?SID=b934751f5f23b5e2c979a73c9fbd7cf3&username=admin&userpass=password>
>

<ns:loginUserResponse><ns:****return>1</ns:return></ns:****
loginUserResponse>

for landing zone:

http://server.ch:5080/****openmeetings/services/****UserService/**<http://server.ch:5080/**openmeetings/services/**UserService/**>
setUserObjectMainLandingZone?****SID=http://server.ch:5080/**
openmeetings/services/****UserService/****setUserObjectMainLandingZone?*
***SID=*
***b49bf973c7d845901b52def0fb6501****36<http://server.ch:5080/**
openmeetings/services/**UserService/**setUserObjectMainLandingZone?**
SID=http://server.ch:5080/**openmeetings/services/**UserService/**
setUserObjectMainLandingZone?**SID=**b49bf973c7d845901b52def0fb6501**36<http://server.ch:5080/openmeetings/services/UserService/setUserObjectMainLandingZone?SID=http://server.ch:5080/openmeetings/services/UserService/setUserObjectMainLandingZone?SID=b49bf973c7d845901b52def0fb650136>
>

<ns:****setUserObjectMainLandingZoneRe****sponse><ns:return>**
d093730627c4e5f01a21130ff779ba****07</ns:return></ns:**
setUserObjectMainLandingZoneRe****sponse>


then i try to login:
http://server.ch:5080/****openmeetings/?secureHash=**<http://server.ch:5080/**openmeetings/?secureHash=**>
d093730627c4e5f01a21130ff779ba****07<http://server.ch:5080/**
openmeetings/?secureHash=**d093730627c4e5f01a21130ff779ba**07<http://server.ch:5080/openmeetings/?secureHash=d093730627c4e5f01a21130ff779ba07>
>


then i always get:

Unknown error. Please report this to the Administrator.

Do i understand something wrong ?


Zitat von "seba.wag...@gmail.com" <seba.wag...@gmail.com>:

 *If i understand this right, via the SOAP/REST API, i can just direct

login
to a room... right ? *
=> No, see my last email with the link to the SOAP/REST call to login to
the dashboard.

Sebastian

2012/2/22 weyerma <thomas.weyerm...@nativenet.ch****>

 the user is always from LDAP.

The Juniper uses the same data from ADS...
Its just a additional authentification for security...

The idea is, the server is in the DMZ and ports are open. The login
page
can be only processed reached via the Juniper from the internal
network.
In juniper i do the following:

http://server.ch:5080/******openmeetings/?username=<http://server.ch:5080/****openmeetings/?username=>
<http:/**/server.ch:5080/****openmeetings/?username=<http://server.ch:5080/**openmeetings/?username=>
>
<http:/**/server.ch:5080/**openmeetings/?**username=<http://server.ch:5080/openmeetings/?**username=>
<http**://server.ch:5080/**openmeetings/?username=<http://server.ch:5080/openmeetings/?username=>
>
>
"xxxxx"**&password="xxxxx"&****domain="**xxxx"


and replace the values with the login vars from the SA.

If i understand this right, via the SOAP/REST API, i can just direct
login
to a room... right ? i like to do the normal login way, like with the
login
form.


Zitat von "seba.wag...@gmail.com" <seba.wag...@gmail.com>:

 Fixing username/pwd will also not fix it really, what userId, email
avatar

 will the user use for its session after the login then ?
You should build your own doorway page using the SOAP/REST API instead
of
changing the source code to send the credentials elsewhere.
By doing that you will not need to edit any source code of
OpenMeetings
and
can also easily switch between OpenMeetings versions.

Sebastian

2012/2/22 weyerma <thomas.weyerm...@nativenet.ch******>

 I like to use the openmeetings with our Juniper SA for auth.


Can someone give me a hint, how i can call the login directly from
the
login window ? i just need to pass the vars "user, password, domain"
over
the url and send them in the login window. I figured out to call the
parent.login(); in checkLoginData.lzx but i don`t know how to send
the
login variables.


Is there no function like login(username,password,********domain); ?




--
Sebastian Wagner
http://www.openmeetings.de
http://incubator.apache.org/******openmeetings/<http://incubator.apache.org/****openmeetings/>
<http://**incubator.apache.org/****openmeetings/<http://incubator.apache.org/**openmeetings/>
>
<http://**incubator.apache.**org/**openmeetings/<http://incubator.apache.org/**openmeetings/>
<http://**incubator.apache.org/**openmeetings/<http://incubator.apache.org/openmeetings/>
>
>
http://www.webbase-design.de
http://www.wagner-sebastian.******com <http://www.wagner-sebastian.**
**com<http://www.wagner-**sebastian.com<http://www.wagner-sebastian.com>
>
>
seba.wag...@gmail.com





--
Sebastian Wagner
http://www.openmeetings.de
http://incubator.apache.org/****openmeetings/<http://incubator.apache.org/**openmeetings/>
<http://**incubator.apache.org/**openmeetings/<http://incubator.apache.org/openmeetings/>
>
http://www.webbase-design.de
http://www.wagner-sebastian.****com  
<http://www.wagner-sebastian.**com<http://www.wagner-sebastian.com>
>
seba.wag...@gmail.com





--
Sebastian Wagner
http://www.openmeetings.de
http://incubator.apache.org/**openmeetings/<http://incubator.apache.org/openmeetings/>
http://www.webbase-design.de
http://www.wagner-sebastian.**com <http://www.wagner-sebastian.com>
seba.wag...@gmail.com






--
Sebastian Wagner
http://www.openmeetings.de
http://incubator.apache.org/openmeetings/
http://www.webbase-design.de
http://www.wagner-sebastian.com
seba.wag...@gmail.com