lams-github / lams_common / src / java / org / lamsfoundation / lams / integration / security

SsoProducer.java

Clone Tools

Stats

Commits this week: 0
Total Committers: 1
Last Commit: 19 Nov 14
Commits this week: 0

Lines of code count not available

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Wednesday 19 Nov 2014
12:21 am

Marcin Cieslak

LDEV-3335, LDEV-3334: Use SSO mechanism introduced in WildFly 9. Do not create web.xml files with XDoclet as it can not produce them based on 3.1 schema. Use static ones instead. Make SessionManager just a proxy to webserver's HTTP session. Remov custom shared sessions and JSESSIONIDSSO cookie as they are obsolete. Remove own session monitoring as the container should take care of invalidation. Move injecting UserDTO into session to SsoHandler intead of UniversalLoginModule as an authentication request may not reach the latter due to WildFly credentials caching.

Options
    • -123
    • +0
    ./SsoProducer.java
  2. … 226 more files in changeset.
Wednesday 22 Oct 2014
2:50 am

Marcin Cieslak

LDEV-3331: Allow logging in via integrations. Allow redirecting to a given URL after log in. Adjust sysadmin "login as" functionality.

Options
    • -3
    • +46
    ./SsoProducer.java
  2. … 3 more files in changeset.
Friday 19 Sep 2014
6:55 pm

Marcin Cieslak

LDEV-3275: Introduce SSO using Undertow mechanisms.

Valves do not exist in Undertow. Another approach had to be used.

In each WAR there is a file in META-INF/service dir which adds a class in request processing chaing.

For Central it is SsoProducer which put the authenticated account into shared session.

All other modules use SsoConsumer which takes the account and puts it into its security context.

In standalone.xml caching of credentials was switched off as it would prevent UniversalLoginModule from putting UserDTO into shared session.

TODO: use a simple pass-all authentication mechanism for static files like images and JS files.

Options
    • -0
    • +80
    ./SsoProducer.java
  2. … 12 more files in changeset.