Win a copy of Node.js Design Patterns: Design and implement production-grade Node.js applications using proven patterns and techniques this week in the Server-Side JavaScript and NodeJS forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
  • Campbell Ritchie
  • Ron McLeod
  • Rob Spoor
  • Tim Cooke
  • Junilu Lacar
  • Henry Wong
  • Liutauras Vilda
  • Jeanne Boyarsky
Saloon Keepers:
  • Jesse Silverman
  • Tim Holloway
  • Stephan van Hulst
  • Tim Moores
  • Carey Brown
  • Al Hobbs
  • Mikalai Zaikin
  • Piet Souris

Is it possible to integrate external SSO authentication/directory provider with JForum?

Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
In particular, I am trying to figure out what is the best way to integrate JForum with our CROWD SSO application for authentication and 'open symphony' API for user/group control. OpenSymphony API can internally talk to crowd via soap client to fetch users, groups, roles etc from crowd repository. So, no problem here .

I can probably implement your LoginAuthenticator to talk to Crowd via its soap client. However, I need a little more information about how to get users/groups etc into JForum with out going through your DAO's or direct sql calls. I also need to prevent the user registration from JForum as we have a seperate/extended process for it. Ability interact with OpenSymphony API is nice and saves time, but it is not a must as I can directly talk to crowd via its soap client. We are planning to deploy JForum as an independent app along with our other applications (confluence, jira and other custom apps) and crowd sso application (which is also a war file). Also how difficult is to use our own login and customize a url for logout - we need to have a uniform login page for all our apps and also set custom session cookies. Do I need set some session variables or cookies so that JForum pages/code can figure out the user is already logged in?

If you already have a way to support this, great. Or, I am willing to extend/implement it myself with your help/suggestions.

JForum looks like a wonderful product and as I am browsing through your source code, it appears like very well architected. Great job!

Thanks in advance.
[originally posted on by bbandlamudi]
Migrated From
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Bandlamudi,
you can use cookies implementation which is a simple solution. Jforum basically achieves SSO implementation using cookies. You can search for Jforum for cookies info and also please go through Monroe bookmarks.

It looks complex but when u implement its damn simple.

[originally posted on by gregjhonson]
That is a really big piece of pie for such a tiny ad:
Building a Better World in your Backyard by Paul Wheaton and Shawn Klassen-Koop
    Bookmark Topic Watch Topic
  • New Topic