[magnolia-user] Magnolia and integrated Windows Authentication

Wed, 02 Apr 2014 08:16:13 -0700 

Hi,
I'm trying to extend Magnolia implementing a "silent login" to automatically 
authenticate a user already logged versus his company domain.
I'm using Magnolia 5.2.3 and SPNEGO library (http://spnego.sourceforge.net/) 
for authenticating user versus company domain controller.

What I'm trying to achieve is the following flow:
- If the user is not logged on Magnolia, the system must try to perform a 
silent login returning the corresponding principal (if any). This one will be 
"matched" over an existing [b]public[/b] user on Magnolia
- If the system cannot perform a silent login, the standard Magnolia login form 
must be shown.

I have a couple of problem.

[b]Problem 1[/b]

[u]If the silent login fails, the user browser shows the box for logging on 
domain and not the Magnolia one.[/u]

I have done a couple of test using SPNEGO authentication API.
In the first I have configured an ad hoc filter on Tomcat above 
magnoliaFilterChain:
[code]
...
<filter-mapping>
                <filter-name>SpnegoHttpFilter</filter-name>
                <url-pattern>/*</url-pattern>
        </filter-mapping>
        <filter-mapping>
                <filter-name>magnoliaFilterChain</filter-name>
                <url-pattern>/*</url-pattern>
                <dispatcher>REQUEST</dispatcher>
                <dispatcher>FORWARD</dispatcher>
                <dispatcher>INCLUDE</dispatcher>
                <dispatcher>ERROR</dispatcher>
        </filter-mapping>
...
[/code]

In the second I have just create a new login handler within Magnolia 
LoginFilter where I have added the implementation for the silent login (using 
always SPNEGO library).

In both case I have the problem described above.
Could you suggest me the best way for achieving Integrated Windows 
Authentication with Magnolia?

[b]Problem 2[/b]
When the silent login ends successfully I have noted some problem with the 
authenticated Magnolia public user.
[u]Admin central is shown but always in loading state, no apps available.[/u]
There's any restriction for public users from accessing apps.

Thanks
Pietro


-

-- 
Context is everything: 
http://forum.magnolia-cms.com/forum/thread.html?threadId=d88afb83-74bb-4fe5-84f2-f4fdebf2f056


----------------------------------------------------------------
For list details, see http://www.magnolia-cms.com/community/mailing-lists.html
Alternatively, use our forums: http://forum.magnolia-cms.com/
To unsubscribe, E-mail to: <[email protected]>
----------------------------------------------------------------

Reply via email to