« Back

OpenSSO integration on Tomcat 6.0.18

General Blogs January 12, 2009 By Prashant Dighe

Many people have complained about not being able to get OpenSSO authentication to work with Liferay on Tomcat. It is a known issue that OpenSSO does not work with Tomcat 6.0.16 from the 6.x series. So you must use Tomcat 6.0.18 or the older 5.x versions of tomcat. This is due to cookie encoding issues.

On Tomcat 6.0.18, you need to set the cookie encoding to true by following the steps below.

  1. Login to OpenSSO as amadmin
  2. Goto Configuration -> Server and Sites -> <myserver> -> Security -> Cookie
  3. Set  "Encode Cookie Value" to Yes

If this value is no editable, then click on "Inheritance Settings" button. Uncheck "Encode Cookie Value" from inheritance settings and save. Then go back and you should see a check box for Encode Cookie Value.

Also make sure you are using the latest Enterprise 8.0 release of OpenSSO from https://opensso.dev.java.net/public/use/index.html

Threaded Replies Author Date
Can we not integrate OpenSSO with Liferay 6.0.6... Manikandan S August 31, 2011 12:20 AM
Prashant Dighe, I have setup Liferay 6.0.6... Satish Bhor March 30, 2012 7:37 AM
Also, the opensso version that i am using is... Satish Bhor March 30, 2012 7:39 AM
Prashant Dighe, It looks like my above problem... Satish Bhor March 30, 2012 9:00 AM

Can we not integrate OpenSSO with Liferay 6.0.6 (tomcat 6.0.29)?
I am not able to integrate with Liferay 6.0.6 because it has tomcat 6.0.29
Posted on 8/31/11 12:20 AM.
Prashant Dighe,

I have setup Liferay 6.0.6 that has tomcat tomcat-6.0.29. On the same machine/server i have setup OpenSSO which runs on tomcat-6.0.35. I have configured opensso for liferay however my configurations do not redirect my liferay to opensso and instead stays on the its own login page. I tried the settings you have mentioned above but that seems not to work for me. Is there anything that you help me with?
Posted on 3/30/12 7:37 AM.
Also, the opensso version that i am using is Release 9.5.2_RC1 Build 563
Posted on 3/30/12 7:39 AM in reply to Satish Bhor.
Prashant Dighe,

It looks like my above problem was solved..at least i am getting redirected to Opensso login page when i try to go my liferay login. However, when i login on opensso. it goes in a continuos loop and my browser gives me the following message

"Firefox has detected that the server is redirecting the request for this address in a way that will never complete."

I am not sure what the problem is, however following are the liferay settings that i have done.

1. Login URL: http://opensso.example.com:9090/openam/UI/Login?goto=http://test.server.com:8080­/c/portal/login
2. Logout URL: http://opensso.example.com:9090/openam/UI/Logout?goto=http://test.server.com:808­0/web/guest/home
3. Service URL: http://opensso.example.com:9090/openam
Posted on 3/30/12 9:00 AM.