Discussions
Categories
- 17.9K All Categories
- 3.4K Industry Applications
- 3.4K Intelligent Advisor
- 75 Insurance
- 537.7K On-Premises Infrastructure
- 138.7K Analytics Software
- 38.6K Application Development Software
- 6.1K Cloud Platform
- 109.6K Database Software
- 17.6K Enterprise Manager
- 8.8K Hardware
- 71.3K Infrastructure Software
- 105.4K Integration
- 41.6K Security Software
Authentication using Satellite and CS
942885
Member Posts: 2
Hi guys,
We are developing a selfservice portal for a telecom company, and we are using FatWire to handle the portal aspects of the site. In this portal we have a secure area that just clients of that company can access, so, when the user register in the portal, we have to link that user with a existing customer in the CRM database.
As we are using WLS, we implemented a custom security provider to perform the correlation and we are using JAAS, so we configurated the web.xml to security url patterns based on roles. Also we implemented a wrapper and using that wrapper we mapped the ACLs based on the Session's principals.
That works for CS.
But when we put a Satellite server ahead the CS server, the principal is mapped just in Satellite so the wrapper can't map the ACLs, because principal in CS doesn't exist.
In the last couple days we were struggling with that and exploring alternatives, but without success.
Do you guys have any suggestion of what we can or what we should do?
Thanks in advance,
Tiago Nascimento
We are developing a selfservice portal for a telecom company, and we are using FatWire to handle the portal aspects of the site. In this portal we have a secure area that just clients of that company can access, so, when the user register in the portal, we have to link that user with a existing customer in the CRM database.
As we are using WLS, we implemented a custom security provider to perform the correlation and we are using JAAS, so we configurated the web.xml to security url patterns based on roles. Also we implemented a wrapper and using that wrapper we mapped the ACLs based on the Session's principals.
That works for CS.
But when we put a Satellite server ahead the CS server, the principal is mapped just in Satellite so the wrapper can't map the ACLs, because principal in CS doesn't exist.
In the last couple days we were struggling with that and exploring alternatives, but without success.
Do you guys have any suggestion of what we can or what we should do?
Thanks in advance,
Tiago Nascimento
Tagged:
Answers
-
If you are building a self-service app the use of Remote Satellite Server is probably not going to add much value and likely to cache headaches, like you experience with JAAS.
Can you do this without Satellite Server?
Dolf -
Dolf,
Thanks for your reply.
That is an alternative, but we don't want do that. Our secure area is transactional but is all asynchronous (Jquery acessing RESTfull web services). So we can and want cache the pages.
This discussion has been closed.