This content has been marked as final. Show 3 replies
I can't answer your question without doing some research that I can't do this week. I'll try next week.
In the meantime, I hope someone else can help so you don't have to wait.
BTW, I solved a similar problem in a different way. I created an Identity Asserter that validated a proprietary cookie and extracted identity from it. The Identity asserter was called from a servlet that then called runAs. In other words, the servlet called weblogic.security.services.Authentication.assertIdentity and then weblogic.servlet.security.ServletAuthentication.runAs with the returned Subject. Of course, then you have to redirect to the real target URL. Not sure if this helps.
I'll keep working and see if I can figure it out.
I don't think your suggestion will work for me because I'm using this to front WebLogic Portal Server so I don't think I'll be able to figure out all the proper URLs.
Did you get a solution for this. Could you combine both Identity and user/password into a single provider ?