grouper-users - RE: [grouper-users] Re: Lite UI Authentication
Subject: Grouper Users - Open Discussion List
List archive
- From: Richard James <>
- To: "'GW Brown, Information Systems and Computing'" <>, "" <>
- Subject: RE: [grouper-users] Re: Lite UI Authentication
- Date: Thu, 4 Feb 2010 15:41:34 +0000
- Accept-language: en-US, en-GB
- Acceptlanguage: en-US, en-GB
Thanks Gary, that has worked perfectly :)
I amended the web.xml file to have the security constraints from the CAS
web.xml file instead of the default security constraints. So we are now able
to authenticate against Shib and go directly into the Lite UI using the login
link or from the "manage members lite" link within the Admin UI.
Many thanks for your help with this.
Cheers
Richard
>-----Original Message-----
>From: GW Brown, Information Systems and Computing
>[mailto:]
>Sent: 04 February 2010 15:20
>To: Richard James;
>
>Subject: Re: [grouper-users] Re: Lite UI Authentication
>
>Hi Richard,
>
>Glad the Admin UI is working.
>
>Another thing the CAS contribution does is 'remove' the default security
>constraints from web.xml. It does this by replacing them with:
>
> <security-constraint>
> <web-resource-collection>
> <web-resource-name>UI</web-resource-name>
> <url-pattern>/grouperUi/app/*</url-pattern>
> </web-resource-collection>
> <user-data-constraint>NONE</user-data-constraint>
> </security-constraint>
>
> <security-constraint>
> <web-resource-collection>
> <web-resource-name>UI</web-resource-name>
> <url-pattern>/grouperUi/appHtml/*</url-pattern>
> </web-resource-collection>
> <user-data-constraint>NONE</user-data-constraint>
>
> </security-constraint>
>
>The 403 error may indicate that part of the Lite UI machinery is trying
>to
>load a local file through http and falling foul of the default security
>constraint. Hopefully changing / removing the constraints will solve the
>problem.
>
>Gary
>
>--On 04 February 2010 09:36 -0500
>
> wrote:
>
>> Hi,
>>
>> Thanks for pointing that out Gary, that has solved the problem with
>the
>> Admin UI, we can now successfully authenticate straight through to the
>UI
>> as required.
>>
>> For the Lite UI, I have had a look at the grouper error log for any
>> entries when trying to access the Lite UI, the only error we seem to
>> catch from groupers perspective is;
>>
>> 2010-02-04 14:17:51,471: [TP-Processor6] ERROR
>> PopulateErrorAction.execute(70) - Caught '403' for
>> /grouper/grouperUi/appHtml/grouper.html
>>
>> I have set the logging to catch everything at the moment. We have been
>> looking around the code ourselves to try and work out why its behaving
>> like it is, but so far a bit of a loss.
>>
>> Thanks
>>
>> Richard
>
>
>
>----------------------
>GW Brown, Information Systems and Computing
>
- Lite UI Authentication, richard . james, 02/03/2010
- Re: [grouper-users] Lite UI Authentication, GW Brown, Information Systems and Computing, 02/03/2010
- RE: [grouper-users] Lite UI Authentication, Richard James, 02/04/2010
- RE: [grouper-users] Lite UI Authentication, Chris Hyzer, 02/03/2010
- RE: [grouper-users] Lite UI Authentication, Richard James, 02/04/2010
- RE: [grouper-users] Lite UI Authentication, Chris Hyzer, 02/04/2010
- RE: [grouper-users] Lite UI Authentication, Richard James, 02/04/2010
- <Possible follow-up(s)>
- Re: Lite UI Authentication, richard . james, 02/04/2010
- Re: [grouper-users] Re: Lite UI Authentication, GW Brown, Information Systems and Computing, 02/04/2010
- RE: [grouper-users] Re: Lite UI Authentication, Richard James, 02/04/2010
- RE: [grouper-users] Re: Lite UI Authentication, GW Brown, Information Systems and Computing, 02/04/2010
- RE: [grouper-users] Re: Lite UI Authentication, Richard James, 02/04/2010
- Re: [grouper-users] Re: Lite UI Authentication, GW Brown, Information Systems and Computing, 02/04/2010
- Re: [grouper-users] Lite UI Authentication, GW Brown, Information Systems and Computing, 02/03/2010
Archive powered by MHonArc 2.6.16.