掲示板
Integrating SSO to liferay on vendor product
9年前 に Tripurari Sharma によって更新されました。
Integrating SSO to liferay on vendor product
New Member 投稿: 3 参加年月日: 14/12/13 最新の投稿
I am working on a financial product which has used liferay 5.2 as their web framework,
vendor has send this to integrate the SSO,
a servlet filter which will have these
req.addParameter("_58_password", password);
// req.addParameter("_58_rememberMe", "off");
req.addParameter("_58_login", username);
req.addParameter("_58_cmd", "update");
req.addParameter("p_p_col_pos", "0");
req.addParameter("p_p_state", "normal");
req.addParameter("p_p_col_count", "1");
req.addParameter("p_p_id", "58");
req.addParameter("_58_struts_action", "/login/login"); ///web/guest
req.addParameter("p_p_action", "1");
// req.addParameter("p_p_mode", "view");
req.addParameter("p_p_lifecycle", "1");
req.addParameter("_58_redirect", redirectKey);
chain.doFilter(req, res);
then entry in web.xml as
<filter>
<filter-name>ssofilter</filter-name>
<filter-class>a.filter.class.name</filter-class>
</filter>
<filter-mapping>
<filter-name>ssofilter</filter-name>
<url-pattern>/web/*</url-pattern>
</filter-mapping>
it don't work well, it shows the login page when session expires, also it shows login page in some case,
Then vendor suggested followings.
1: in SSO env system should be setup in such a way the session should not expire.
2: With SSO there is a batch script that runs to "flush" when memory is full.
3: and then I fainted for two days.
from my view it shows web.xml already has, autologin can be used....
<filter>
<filter-name>Auto Login Filter</filter-name>
<filter-class>com.liferay.portal.servlet.filters.autologin.AutoLoginFilter</filter-class>
</filter>
my requirement is very simple, get the userId from header and create the session, remaining things are handled by upstream.
gentlemen your help/guidance will be greatly appreciated
vendor has send this to integrate the SSO,
a servlet filter which will have these
req.addParameter("_58_password", password);
// req.addParameter("_58_rememberMe", "off");
req.addParameter("_58_login", username);
req.addParameter("_58_cmd", "update");
req.addParameter("p_p_col_pos", "0");
req.addParameter("p_p_state", "normal");
req.addParameter("p_p_col_count", "1");
req.addParameter("p_p_id", "58");
req.addParameter("_58_struts_action", "/login/login"); ///web/guest
req.addParameter("p_p_action", "1");
// req.addParameter("p_p_mode", "view");
req.addParameter("p_p_lifecycle", "1");
req.addParameter("_58_redirect", redirectKey);
chain.doFilter(req, res);
then entry in web.xml as
<filter>
<filter-name>ssofilter</filter-name>
<filter-class>a.filter.class.name</filter-class>
</filter>
<filter-mapping>
<filter-name>ssofilter</filter-name>
<url-pattern>/web/*</url-pattern>
</filter-mapping>
it don't work well, it shows the login page when session expires, also it shows login page in some case,
Then vendor suggested followings.
1: in SSO env system should be setup in such a way the session should not expire.
2: With SSO there is a batch script that runs to "flush" when memory is full.
3: and then I fainted for two days.
from my view it shows web.xml already has, autologin can be used....
<filter>
<filter-name>Auto Login Filter</filter-name>
<filter-class>com.liferay.portal.servlet.filters.autologin.AutoLoginFilter</filter-class>
</filter>
my requirement is very simple, get the userId from header and create the session, remaining things are handled by upstream.
gentlemen your help/guidance will be greatly appreciated
9年前 に David H Nebinger によって更新されました。
RE: Integrating SSO to liferay on vendor product
Liferay Legend 投稿: 14915 参加年月日: 06/09/02 最新の投稿Trip Sha:
3: and then I fainted for two days.
I would have fainted for a longer period of time.
Usually to handle an SSO implementation in Liferay you have to code something up for it. Fortunately you have the Liferay source and can leverage one of the existing SSO implementations as an example of what to do for your implementation.
Of course you can choose to use non-expiring sessions, but for a vendor to tell you to possibly violate your security policies just to use their tool seems a little bit odd to me.
9年前 に Olaf Kock によって更新されました。
RE: Integrating SSO to liferay on vendor product (回答)
Liferay Legend 投稿: 6403 参加年月日: 08/09/23 最新の投稿
let me summarize what I read in this story:
Did I get this somewhat correctly?
Even if they were on 5.2 EE, the hacky SSO would raise an eyebrow, but at least there's still Phase2-support for it.
- ...financial system...
- ...fiddled together sign-in process...
- ...more than 5 years without updates (5.2.3? or are they on 5.2 EE?)...
- ...needs to be updated with something that's well contained within current versions of Liferay...
Did I get this somewhat correctly?
Even if they were on 5.2 EE, the hacky SSO would raise an eyebrow, but at least there's still Phase2-support for it.
7年前 に Trip Sha によって更新されました。
RE: Integrating SSO to liferay on vendor product
New Member 投稿: 3 参加年月日: 14/12/13 最新の投稿
no its 5.2 CE