SSO with the mid-tier is a two part implementation. One part in the mid-tier and the other part in an AREA plug-in.
Turn on the plug-in logs (if you have any type of AREA plug-in enabled) and user logs (to see the authentication success/failure) and see what is happening on the other end of the line. Axton Grams These are my opinions and do not represent anything but my opinion. On Mon, May 3, 2010 at 3:09 PM, Jeff Lockemy (QMX Support Services) < jlock...@gmail.com> wrote: > ** > > If you eventually decide to hire outside help… There is a company called > Optimal IdM that does work with implementing SSO: > http://www.optimalidm.com/services/default.aspx > > > > One of our customers has used them for several implementations already, and > they are in the process of doing another one. Not sure what they would > charge you, but it might be worth looking into… > > > > Cheers, > > Jeff > > > > > > > > * * > > *Jeff Lockemy*** > > QMX Support Services Inc. > > (858) 366-8979 > > > > > > *From:* Action Request System discussion list(ARSList) [mailto: > arsl...@arslist.org] *On Behalf Of *Chintan Shah > *Sent:* Monday, May 03, 2010 2:06 PM > *To:* arslist@ARSLIST.ORG > *Subject:* SSO Implementation > > > > ** > > Hi all, > > I would like to know if anybody has implemented methodology specified in > whitepaper here for single sign on. > http://documents.bmc.com/supportu/documents/57/12/65712/65712.pdf > > I have been trying to integrate it but for some reason it goes back to > Remedy's Midtier login page...not sure where I should go to debug..since > Remedy doesnt provide Servlet code that fall back's to login page. I have > also made appropriate config file change on midtier. > > Has anybody successfully implemented it? > > Please share your ideas. > > here's sample code that I am using (packaged class in a jar file and then > put it in Midter/WEB-INF/lib) > > ---------------------------------------------------- > public class MyAuthenticator implements Authenticator { > > public void init(Map cfg) { > > } > public void destroy() { > > } > > public UserCredentials getAuthenticatedCredentials( > HttpServletRequest request, HttpServletResponse response) > throws IOException{ > > String user = request.getHeader(userHeaderName); > String pw=null; > String authStr=null; > if ((user!=null&&user.length()>0) ) { > return new > UserCredentials(user.toLowerCase(),pw,authStr); > } > else { //2. user not auth'd; return null. > //embed routing info in response object if necessary. > return new UserCredentials(myUserName,null,null); > } > } > } > ---------------------------------------------------------------- > > Thanks > Chintan. > > > _attend WWRUG10 www.wwrug.com ARSlist: "Where the Answers Are"_ > _attend WWRUG10 www.wwrug.com ARSlist: "Where the Answers Are"_ _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org attend wwrug10 www.wwrug.com ARSlist: "Where the Answers Are"
