wood burning stoves 2.0*
The moose likes JBoss/WildFly and the fly likes JBoss Seam - Single Sign-on Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » JBoss/WildFly
Bookmark "JBoss Seam - Single Sign-on" Watch "JBoss Seam - Single Sign-on" New topic
Author

JBoss Seam - Single Sign-on

Mourouganandame Arunachalam
Ranch Hand

Joined: Oct 29, 2008
Posts: 396
Does Seam support Single Sign-On? If yes, could that can be extended at OS level SSO? (example, users logged into windows desktop can seamlessly access seam apps without login?)

How about security handled in Seam?

Mourougan
Open Source leads to Open Mind
Jason Porter
Ranch Hand

Joined: Apr 26, 2007
Posts: 120
Seam currently has support for OpenID and OpenSSO (http://docs.jboss.com/seam/latest/reference/en-US/html/security.html#d0e13534) support is coming. There are also many forum postings and blogs about getting OSS to work with Seam, simply Google for them
Michael Yuan
author
Ranch Hand

Joined: Mar 07, 2002
Posts: 1427
Security is actually a very strong point of Seam. Seam has its own security framework that does much more than most other web app security frameworks. It provides permission-based, and role-based access controls at the object level.

I am not sure how the OS native SSO works -- does the browser pass through some kind of security token to the web app? Can you just make the browser remember the username / password and auto-login?


Seam Framework: http://www.amazon.com/exec/obidos/ASIN/0137129394/mobileenterpr-20/
Ringful: http://www.ringful.com/
Jacob Orshalick
Author
Ranch Hand

Joined: Mar 30, 2009
Posts: 32
example, users logged into windows desktop can seamlessly access seam apps without login


I have actually been working through this with JBoss Negotiation and Kerberos authentication. The UserPrincipal gets initialized in the web context by JBoss Negotiation and you can use this principal to auto-login the user with a custom authenticator. Your authenticator can also use the user information to retrieve the roles associated with the user or if you are using Seam 2.1 by providing a role identity store. You can also provide an identity store for fallback authentication (e.g. through LDAP or some other means) should the Kerberos authentication fail.


Seam Framework: Experience the Evolution of Java EE | [url]http://solutionsfit.com[/url]
Mourouganandame Arunachalam
Ranch Hand

Joined: Oct 29, 2008
Posts: 396
Thanks for the information Michael & Jacob...
xiaodu liu
Greenhorn

Joined: Sep 15, 2009
Posts: 1
Thanks Jacob.

I wonder if you have any blog talking about the jboss seam sso using jboss negotiation. I am very interested in to know how it works. Thanks.
Peter Johnson
author
Bartender

Joined: May 14, 2008
Posts: 5830
    
    7

xiaodu, please do not wake the zombies. Instead, please ask your question in a new post.


JBoss In Action
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: JBoss Seam - Single Sign-on