This week's book giveaways are in the Java EE and JavaScript forums.
We're giving away four copies each of The Java EE 7 Tutorial Volume 1 or Volume 2(winners choice) and jQuery UI in Action and have the authors on-line!
See this thread and this one for details.
The moose likes EJB and other Java EE Technologies and the fly likes openSSO use only for authentication for j2ee application Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of The Java EE 7 Tutorial Volume 1 or Volume 2 this week in the Java EE forum
or jQuery UI in Action in the JavaScript forum!
JavaRanch » Java Forums » Java » EJB and other Java EE Technologies
Bookmark "openSSO use only for authentication for j2ee application" Watch "openSSO use only for authentication for j2ee application" New topic
Author

openSSO use only for authentication for j2ee application

raj kothari
Greenhorn

Joined: Nov 21, 2005
Posts: 24
Hi,
We have to use openSSO for authentication in our application as demanded by Client.
The requirement here is,
when user launch our application,
he would be redirected to openSSO,
user needs to authenticate itself,
after authentication, re-direct back to our application.

We want opensso only for authentication. As far as authorization is concerned, our application will handle itself like what menus/UI pages/ EJBs an user can call etc.,

I was informed to install policy agent in our weblogic domain ( J2EE Policy Agent 3.0 )
This would redirect to openSSO server.

But when I saw the steps to configure Agent in openSSO, Policies and Rules and many other stuff, I think I'm misguided with many concepts.

All I wanted is authentication from openSSO. I think if the user is valid, openSSO would put some cookie or Token in request and re-direct back. We might need to change application to read the subject/ principal from this token.
But I'm not getting things correctly..
Can any one please help..?
 
Don't get me started about those stupid light bulbs.
 
subject: openSSO use only for authentication for j2ee application