A community for Application Developers on OrangeScape's Platform-as-a-Service
Hi I have a requirement of implementing a custom SSO on an OrangeScape app deployed on JBOSS. I have configured the app to connect to LDAP for authentication, which is working fine.
What I want to do is implement a custom SSO for this app. If user is already signed into SSO login, the user request will have a uid ( username/email ) and a 'token' parameter in the request header. I would like to 'extend' the out-of-the-box LDAP Authentication classes/methods to intercept this request, extract uid and token, validate the token ( custom code ) and in case of valid token, do an 'auto-login' of this uid with no password ( since password of this user could be different for different systems in SSO ).
I have been digging the application code ( python ) and am able to figure out few things like the LDAP auth, enterprise auth classes, renderLogin, authenticate methods etc, but no able exactly pin point the flow and decide where to inject this piece of code.
Can someone please help / guide ?
Please look at the section Single Sign On in this post.
This is probably applicable to SSO between multiple OrangeScape applications. What we are trying to establish is SSO between a non OrangeScape and an OrangeScape application. So here, since the SSO provider is different ( not Apache ), we can not use what the blog is suggesting.
What I need is to do is basically intercept the request / call "before" it goes to LDAP Authentication and "bypass" the authentication altogether in case of the token match. Can you tell me where ( which python class/method ) I should be putting this 'custom' code in ?
Would appreciate a quick reply , thanks !!
Please go through the following link. This should give you an idea as to where to insert your methods. If you have any questions please post back here.