A good approach for SiteMinder integration is to setup siteminder on the
HTTP or App Server.
Either on the Apache 2 frontal if there is one, or in Tomcat using
filters if that exists for SiteMinder.
Then you can use an authenticator similar to
AppServerTrustedAuthentication to trust what Apache has done.
You then finally need to modify login.vm to redirect to the SiteMinder
authentication pages.
Hi Sharan,
XWiki currently supports LDAP and eXo. I'm currently working on OpenID
integration. I don't know how Siteminder works, but the current
authentication mechanism is very limited and would need some love. It is
currently limited to username & password based authentication (or at least a
emulation of that - like I'm using it for OpenID).
Look at my OpenID patch to get some ideas:
http://jira.xwiki.org/jira/browse/XWIKI-2588
Do you have any specific questions?
Best,
Markus
----- Original Message -----
From: <sharanabasavaraj.x.mudgal(a)jpmchase.com>
To: <devs(a)xwiki.org>
Sent: Monday, August 25, 2008 11:04 PM
Subject: [gsoc] [xwiki-devs] Siteminder Integration
Hi!
I am looking for some information on the supportablitlty of Xwiki with
SSO for authentication. At this stage, I am exploring the options on
how to set this configuration up. There is not much documentation
available on the Xwiki site on information for integrating with SSO
siteminder though a reference to siteminder is available on the site(
http://platform.xwiki.org/xwiki/bin/view/AdminGuide/Authentication check
under Custom Aunthentication). I was wondering if any of you could
direct me towards more resources/documentation...
Thanks.
Sharan.
-----------------------------------------
This communication is for informational purposes only. It is not
intended as an offer or solicitation for the purchase or sale of
any financial instrument or as an official confirmation of any
transaction. All market prices, data and other information are not
warranted as to completeness or accuracy and are subject to change
without notice. Any comments or statements made herein do not
necessarily reflect those of JPMorgan Chase & Co., its subsidiaries
and affiliates.
This transmission may contain information that is privileged,
confidential, legally privileged, and/or exempt from disclosure
under applicable law. If you are not the intended recipient, you
are hereby notified that any disclosure, copying, distribution, or
use of the information contained herein (including any reliance
thereon) is STRICTLY PROHIBITED. Although this transmission and any
attachments are believed to be free of any virus or other defect
that might affect any computer system into which it is received and
opened, it is the responsibility of the recipient to ensure that it
is virus free and no responsibility is accepted by JPMorgan Chase &
Co., its subsidiaries and affiliates, as applicable, for any loss
or damage arising in any way from its use. If you received this
transmission in error, please immediately contact the sender and
destroy the material in its entirety, whether in electronic or hard
copy format. Thank you.
Please refer to
http://www.jpmorgan.com/pages/disclosures for
disclosures relating to UK legal entities.
_______________________________________________
devs mailing list
devs(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/devs
_______________________________________________
devs mailing list
devs(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/devs