Re: [Acegisecurity-developer] Central Authentication for Web Farm
Scott, Thanks for the tip. I've been reading this: http://www.developertutorials.com/tutorials/java/single-sign-on/page4.html And I'm really impressed/delighted with how cool this is. It looks like the perfect solution. Thanks again, - Ole Scott Battaglia wrote: > Ole, > > You may want to look at JA-SIG CAS which looks like it could solve your > problem (and it has Acegi integration ;-)). > > http://www.ja-sig.org/products/cas/ > > Thanks > -Scott > > Ole Ersoy wrote: >> Hi Shi, >> >> ShiLei wrote: >> >>> Hi,Ole >>> >>> Could you formulate your point more specifically? >>> >> Sure. Suppose we have a user "Joe". Joe goes to >> www.myapplicationsonmanyservers.com and enters his login id and credentials, >> along with the application that Joe wants to work with. Once received, the >> server tries to authenticate Joe. If Joe authenticates, the authentication >> servers redirects Joe to the application (running on a machine that is >> identified based on joe's login id and requested application combination) >> and gives the browser the proper "Ticket" (I think) enabling him to >> establish a secure session with the application. >> >> I've been reading up a little more and I think I'm looking for the CAS >> integration. >> >> >>> I am not much clear about the idea of central authentication.Do you mean >>> a single authentication for a bunch of web applications? >>> >> Yes - many applications running on many machines. >> >> >>> Then, the >>> redirection depends on what? >>> >> The user id and, if provided, the application name. If the application name >> is not provided, then the server would just use a configured default. >> >> SNIP >> >> Thanks, >> - Ole >> >> >> - >> This SF.net email is sponsored by: Splunk Inc. >> Still grepping through log files to find problems? Stop. >> Now Search log events and configuration files using AJAX and a browser. >> Download your FREE copy of Splunk now >> http://get.splunk.com/ >> ___ >> Home: http://acegisecurity.org >> Acegisecurity-developer mailing list >> Acegisecurity-developer@lists.sourceforge.net >> https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer >> > > > - > This SF.net email is sponsored by: Splunk Inc. > Still grepping through log files to find problems? Stop. > Now Search log events and configuration files using AJAX and a browser. > Download your FREE copy of Splunk now >> http://get.splunk.com/ > ___ > Home: http://acegisecurity.org > Acegisecurity-developer mailing list > Acegisecurity-developer@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer > - This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Central Authentication for Web Farm
Ole, You may want to look at JA-SIG CAS which looks like it could solve your problem (and it has Acegi integration ;-)). http://www.ja-sig.org/products/cas/ Thanks -Scott Ole Ersoy wrote: > Hi Shi, > > ShiLei wrote: > >> Hi,Ole >> >> Could you formulate your point more specifically? >> > > Sure. Suppose we have a user "Joe". Joe goes to > www.myapplicationsonmanyservers.com and enters his login id and credentials, > along with the application that Joe wants to work with. Once received, the > server tries to authenticate Joe. If Joe authenticates, the authentication > servers redirects Joe to the application (running on a machine that is > identified based on joe's login id and requested application combination) and > gives the browser the proper "Ticket" (I think) enabling him to establish a > secure session with the application. > > I've been reading up a little more and I think I'm looking for the CAS > integration. > > >> I am not much clear about the idea of central authentication.Do you mean >> a single authentication for a bunch of web applications? >> > > Yes - many applications running on many machines. > > >> Then, the >> redirection depends on what? >> > > The user id and, if provided, the application name. If the application name > is not provided, then the server would just use a configured default. > > SNIP > > Thanks, > - Ole > > > - > This SF.net email is sponsored by: Splunk Inc. > Still grepping through log files to find problems? Stop. > Now Search log events and configuration files using AJAX and a browser. > Download your FREE copy of Splunk now >> http://get.splunk.com/ > ___ > Home: http://acegisecurity.org > Acegisecurity-developer mailing list > Acegisecurity-developer@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer > - This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Central Authentication for Web Farm
Hi Shi, ShiLei wrote: > Hi,Ole > > Could you formulate your point more specifically? Sure. Suppose we have a user "Joe". Joe goes to www.myapplicationsonmanyservers.com and enters his login id and credentials, along with the application that Joe wants to work with. Once received, the server tries to authenticate Joe. If Joe authenticates, the authentication servers redirects Joe to the application (running on a machine that is identified based on joe's login id and requested application combination) and gives the browser the proper "Ticket" (I think) enabling him to establish a secure session with the application. I've been reading up a little more and I think I'm looking for the CAS integration. > I am not much clear about the idea of central authentication.Do you mean > a single authentication for a bunch of web applications? Yes - many applications running on many machines. > Then, the > redirection depends on what? The user id and, if provided, the application name. If the application name is not provided, then the server would just use a configured default. SNIP Thanks, - Ole - This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Central Authentication for Web Farm
Hi,Ole Could you formulate your point more specifically? I am not much clear about the idea of central authentication.Do you mean a single authentication for a bunch of web applications? Then, the redirection depends on what? Regards, shi - This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] Central Authentication for Web Farm
Hi, I hope this is the right list. Please let me know if there is a different one I should be using. I'm trying to figure out the best way of handling central authentication for a web farm. I'd like users to be able to login through a central page and then if their authentication succeeds, be redirected to the server that their web application is residing on. Does acegi support something like this? Thanks, - Ole - This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer