Navigation

Changeset 279

Timestamp:

08/05/07 12:44:00 (1 year ago)

Author:

paulhethmon

Message:

Add support to use Safemls as authentication engine.

Files:

r262	r279
1		build.xml.data.CRC32=~~75b67b21~~
	1	build.xml.data.CRC32=382e5636
2	2	build.xml.script.CRC32=6ed50798
3	3	build.xml.stylesheet.CRC32=95be3570
4	4	# This file is used by a NetBeans-based IDE to track changes in generated files such as build-impl.xml.
5	5	# Do not edit this file. You may delete it but then the IDE will never regenerate such files for you.
6		nbproject/build-impl.xml.data.CRC32=~~75b67b21~~
7		nbproject/build-impl.xml.script.CRC32=~~6fb8c682~~
	6	nbproject/build-impl.xml.data.CRC32=382e5636
	7	nbproject/build-impl.xml.script.CRC32=018282d9
8	8	nbproject/build-impl.xml.stylesheet.CRC32=ac43bae1

r262	r279
28	28	${libs.Velocity.classpath}:\
29	29	${reference.ClareitySecuritySSO.jar}:\
30		${libs.OpenSAML-20070729-JDK1.5.classpath}
	30	${libs.OpenSAML-20070729-JDK1.5.classpath}:\
	31	${libs.Axis1.3.classpath}
31	32	# Space-separated list of extra javac options
32	33	javac.compilerargs=

r262	r279
28	28	<path-in-war>WEB-INF/lib</path-in-war>
29	29	</library>
	30	<library files="9">
	31	<file>${libs.Axis1.3.classpath}</file>
	32	<path-in-war>WEB-INF/lib</path-in-war>
	33	</library>
30	34	</web-module-libraries>
31	35	<web-module-additional-libraries/>

r267	r279
77	77	rsp.setAuthnRequest(auth);
78	78	rsp.setLoginId(idpLoginId);
79		rsp.setIssuerName( request.get~~RequestURL().toString~~() );
	79	rsp.setIssuerName( request.getLocalName() );
80	80	rsp.setPrivateKeyCache(pkCache);
81	81	rsp.setSignAssertion(true);

r263	r279
38	38
39	39	<ol>
40		<li>~~Create the private key first:<br~~>
41		~~openssl genrsa -out private-key.pem 1024~~</li>
	40	<li><p>Create the private key first:</p>
	41	<p class="command">openssl genrsa -out private-key.pem 1024</p></li>
42	42
43		<li>~~Next create the corresponding public key:<br~~>
44		~~openssl rsa -in rsaprivkey.pem -pubout -outform PEM -out public-key.pem~~</li>
	43	<li><p>Now we must create the certificate request containing the public key:</p>
	44	<p class="command">openssl req -new -x509 -key private-key.pem -out public-cert.req</li>
45	45
46		<li>Now we must create the certificate request containing the public key:<br>
47		openssl req -new -x509 -key private-key.pem -out public-cert.req</li>
48
49		<li>Finally we self-sign the certificate request to end up with our public certificate:<br>
50		openssl x509 -req -days 365 -sha1 -signkey private-key.pem -in public-cert.req -out public-cert.pem</li>
	46	<li><p>Finally we self-sign the certificate request to end up with our public certificate:</p>
	47	<p class="command">openssl x509 -req -days 365 -sha1 -signkey private-key.pem -in public-cert.req -out public-cert.pem</p></li>
51	48
52	49	</ol>

r58	r279
42	42	}
43	43
	44	.command {
	45	font-family: "Arial", "Helvetica", sans-serif;
	46	font-size: 11px;
	47	font-weight: normal;
	48	color: #3366FF;
	49	}
	50
44	51	.section
45	52	{

r259	r279
24	24	<%@ page import="org.opensaml.saml2.core.*" %>
25	25	<%
	26	String action = "auth-user.jsp";
	27	String tmp;
	28
	29	// Check and see if we need to do Safemls Authentication
	30	tmp = request.getParameter("authtype");
	31	if ((tmp != null) && (tmp.equalsIgnoreCase("safemls") == true)) {
	32	action = "auth-secure.jsp";
	33	}
	34
26	35	HttpHandler httpPost = new HttpHandler();
27	36	AuthnRequest authnRequest = httpPost.decodeSAMLRequest(request);
…	…
67	76	<h1>ACME Idp Login Page</h1>
68	77
69		<form name="login" method="POST" action="~~auth-user.jsp~~">
	78	<form name="login" method="POST" action="<% out.print( action );%>">
70	79	<table class="section">
71	80	<tr><td>Idp Login ID:</td><td><input type="text" name="idploginid" id="idploginid" size="30"></td></tr>