Messages

Hi,

After successful LDAP integration with Konakart now we want to implement SSO with CAS and Konakart Admin.
The important issue is a methodology for CasAuthenticationFilter implementation which is called after regular CasFilter
(responsible for authentication and SSO token management).
CasAuthenticationFilter must check for "CAS authentication header" which contains username.
The username is used for KKAdminEngine initialization, but I don't know the algorithm to be used (password is not accessible).
I'm not sure how to initialize other objects used by GWT engine in KKAdmin Console.

Code Select Expand


@Override
public void doFilter(ServletRequest req, ServletResponse resp,
FilterChain chain) throws IOException, ServletException {

// Get the HTTP request/response/session
HttpServletRequest httpReq = (HttpServletRequest) req;
HttpServletResponse httpResp = (HttpServletResponse) resp;
HttpSession httpSess = httpReq.getSession(true);

String authHdr = (String) httpReq.getSession().getAttribute(casFilterUser);

if (authHdr == null) {
logger.debug("cas-user header not found.");
} else {
logger.debug("cas-user header is <" + authHdr + ">");
}

// Throw an error if we have an unknown authentication
if ((authHdr == null) || (authHdr.length() < 1)) {
httpResp.sendRedirect(httpReq.getContextPath() + "/jsp/noaccess.jsp");
return;
}
// Get the user
String userName = authHdr;
if (logger.isDebugEnabled()) {
logger.debug("User= " + userName);
}
       
// See if there is a user in the session and test if it matches
// ????????????????????????????????????????????????????
                // WHAT IS the algorithm
}
   

Hello,

I have just implemented extension module for LDAP authentication and it does work.
However I think that it is also necessary to provide some synchronization between LDAP and Konakart users database.
Do I think correctly?