Thanks Jurgen, I guess I'll go with acegi then. -----Original Message----- From: Jurgen Lust [mailto:[EMAIL PROTECTED] Sent: Saturday, February 10, 2007 5:09 AM To: Collette Nathan Contr OO-ALC/ITMD Cc: MyFaces Discussion Subject: Re: SecurityFilter
Hi Nathan, Unfortunately I am not allowed to distribute this library, and I doubt it would be of any use to anyone, because it only works with our own SSO solution. However, we have recently switched to JA-SIG CAS (http://www.ja-sig.org) and Acegi Security (http://www.acegisecurity.org/), which works great and is much more flexible and easier to extend than SecurityFilter. Kind regards, Jurgen Op vrijdag 09-02-2007 om 15:30 uur [tijdzone -0700], schreef Collette Nathan Contr OO-ALC/ITMD: > Hi Jurgen, > > > > I was looking around trying to understand better how SSO and JSF could > be put together and I came across this thread: > > 2006/5/23, Jurgen Lust <[EMAIL PROTECTED]>: > > > > We're using a patched version of SecurityFilter, works like a charm.. > > Basically, it does the following: > > > > 1. check security-config.xml if the requested page requires > > authorisation > > 2. check session if user is logged in > > 3. if user is not logged in, redirect to the login page of the SSO > > server, passing the origin url as parameter > > 4. after successful login, redirect to the custom login servlet of our > > securityfilter, passing a signed token. > > 5. the login servlet decrypts the token using the public key of the SSO > > server. The key contains (among other info) the username of the > > logged-in user. > > 6. if desired, check a database or ldap or whatever for the roles of > > this user > > 7. add all this information to the UserPrincipal > > > > We packaged all this in a library, and now we have declarative SSO > > security for all our JSF webapps. Very simple, but effective... > > > > > > Jurgen > > > > > > Op di, 23-05-2006 te 14:30 +0200, schreef [EMAIL PROTECTED]: > > > Hi > > > > > > There is not any particular functionality in JSF that supports SSO > > > explicitly. This is normally handled in the container, or by plugging > > > in an API such as Acegi or SecurityFilter. > > > > > > Hermod > > > -----Original Message----- > > > From: Rogerio Pereira [mailto:[EMAIL PROTECTED] > > > Sent: Tuesday, May 23, 2006 2:25 PM > > > To: MyFaces Discussion > > > Subject: Who uses Single Sign On with JSF? > > > > > > > > > Hi, > > > > > > I would like to know if somebody uses SSO with JSF, i'm trying > > > to find a good way to do it in my apps. > > > > > > Thanks for any answer. > > > > > > -- > > > Yours truly (Atenciosamente), > > > > > > Rog�rio > > > > Any chance I could get your modified SecurityFilter and use it? > > > > Thanks, > > Nathan Collette > > Automated Material Tracking Systems - Developer > > Contractor > > 586-3869 > > > > > > -- ____________________________________________________ Jurgen Lust email: [EMAIL PROTECTED] blog: http://jroller.com/page/jurgenlust ____________________________________________________