Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP

Fetching latest commit…

Cannot retrieve the latest commit at this time

..
Failed to load latest commit information.
src/main
README.md
pom.xml

README.md

This is other spnego implementation beside https://github.com/gatein/gatein-sso/tree/master/spnego We introduce new spnego implementation because existing implementation dose not work on gatein tomcat packaging. This implementation work well on both jboss and tomcat packaging.

Build and configure

  1. Configure SPNEGO Server You configure SPNEGO server follow the guideline at gatein document: https://docs.jboss.org/author/display/GTNPORTAL37/SPNEGO

  2. Build and deploy spnegosso

    • Use maven to build gatein-spnego project
    • Copy spnegosso-${VERSION}.jar to $GATEIN_TOMCAT/lib folder
  3. Configure gatein

    • Append this login module configuration into $GATEIN_HOME/conf/jaas.conf
spnego-server {
    com.sun.security.auth.module.Krb5LoginModule required
    storeKey=true
    doNotPrompt=true
    useKeyTab=true
    keyTab="/etc/krb5.keytab"
    principal="HTTP/server.local.network@LOCAL.NETWORK"
    useFirstPass=true
    debug=true
    isInitiator=false;
};
  • Change SSO section in the file $GATEIN_HOME/gatein/conf/configuration.properties to be like this:
gatein.sso.enabled=true
gatein.sso.filter.spnego.enabled=true
gatein.sso.callback.enabled=false
gatein.sso.skip.jsp.redirection=false
gatein.sso.login.module.enabled=true
gatein.sso.login.module.class=org.gatein.security.sso.spnego.SPNEGOSSOLoginModule
gatein.sso.filter.login.sso.url=/@@portal.container.name@@/spnegosso
gatein.sso.filter.initiatelogin.enabled=false
gatein.sso.valve.enabled=false
gatein.sso.filter.logout.enabled=false
Something went wrong with that request. Please try again.