Re: [Hypercontent-users] CASIFY Hypercontent - issue
Brought to you by:
alexvigdor
Menu
▾
▴
Re: [Hypercontent-users] CASIFY Hypercontent - issue
|
From: tom t. <j_l...@ya...> - 2006-11-01 02:28:21
|
Hi Alex, I got SSO working but differently though pls see my observations/doubts pls let me know if anything needs to be modified. > When the user logs into the portal via CAS, they are > also > establishing a session between their browser and the > CAS server. When > a link inside a portlet opens HyperContent in a new > window, if > authentication is required for that HC page, the > link has a parameter > "mode=login", or the user clicks "login" on the > page, they will be > redirected to the CAS server which, having already > established a > session with the user's browser, will automatically > redirect back to > HC with a ticket that HC can use to authenticate the > user without > seeing their password. The CAS authentication into > HC is invisible > to the user as long as their CAS session has not > expired since they > logged into the portal. > > In this mechanism, the portal is not passing any > information to > HyperContent about the user. Instead, CAS acts as a > trusted > authentication source for both uPortal and > HyperContent, and may only > require the user to enter their password once to > provide > authentication into both HC and UP. > Yes I do agree with this but what happened was I inserted the following HTML segment in one of the portlets within uPortal without the "mode=login" but still it (SSO) worked allright. <a href="http://localhost:8080/hypercontent/my-project/?mode=interactive" class="alt" target="x" id="blue" > Edit/Publish content</a> When I click the link it pops up a seperate window with the logged in mode (wihout need to enter userid and passswords) I really dont know whether are there security holes or not? but seems allright for me. To my understanding even though u dont give the 'mode=login' in the link still HC does the handshake as you mentioned above. Without providing a link as above I followed one of the feedback you sent it to me some time back,i.e providing a webproxy for dashboard-portlet. I followed the following steps 1) I gave the following as the url http://localhost:8080/hypercontent/index.xml?mode=dashboard-portlet&command=Login 2) gave edu.yale.its.tp.portal.security.CasConnectionContext as the LocalConnectionContext. apart from the above two I kept all other entries to the default values and published the webproxy. Then when I tried to subscribe to the channel it gave me a xml parcing exception, after that I made the tidy on and republished, after that it doesnt show any errors but shows a blank screen. Can You let me know whats wrong in my setup. Are there any additional entries that I need to setup while publishing this webproxy. Can you let me know how this dashboard-differnt to the my exising way (providing a link to HC in a channel) Does the dashboard-portlet got more security protection as it got differnt hand shake with uPortal-HC with the use of CasConnectionContext and "command=Login" In addition am getting the following error in catalina.out for the default simpleProject which comes with the HC installations. Is there any way I can delete this project completely. This error comes when I am publishing contents via webproxy(dashboard-portlet) TODO: I need to check the caslogout works as per the pipeline.xml Thanks __________________________________________________________________________________________ Check out the New Yahoo! Mail - Fire up a more powerful email and get things done faster. (http://advision.webevents.yahoo.com/mailbeta) |
