grouper-users - RE: [grouper-users] Re: Lite UI Authentication
Subject: Grouper Users - Open Discussion List
List archive
- From: "GW Brown, Information Systems and Computing" <>
- To: Richard James <>,
- Subject: RE: [grouper-users] Re: Lite UI Authentication
- Date: Thu, 04 Feb 2010 16:33:56 +0000
Great - we obviously need to add some documentation!
Gary
--On 04 February 2010 15:41 +0000 Richard James <> wrote:
Thanks Gary, that has worked perfectly :)
I amended the web.xml file to have the security constraints from the CAS
web.xml file instead of the default security constraints. So we are now
able to authenticate against Shib and go directly into the Lite UI using
the login link or from the "manage members lite" link within the Admin UI.
Many thanks for your help with this.
Cheers
Richard
-----Original Message-----
From: GW Brown, Information Systems and Computing
[mailto:]
Sent: 04 February 2010 15:20
To: Richard James;
Subject: Re: [grouper-users] Re: Lite UI Authentication
Hi Richard,
Glad the Admin UI is working.
Another thing the CAS contribution does is 'remove' the default security
constraints from web.xml. It does this by replacing them with:
<security-constraint>
<web-resource-collection>
<web-resource-name>UI</web-resource-name>
<url-pattern>/grouperUi/app/*</url-pattern>
</web-resource-collection>
<user-data-constraint>NONE</user-data-constraint>
</security-constraint>
<security-constraint>
<web-resource-collection>
<web-resource-name>UI</web-resource-name>
<url-pattern>/grouperUi/appHtml/*</url-pattern>
</web-resource-collection>
<user-data-constraint>NONE</user-data-constraint>
</security-constraint>
The 403 error may indicate that part of the Lite UI machinery is trying
to
load a local file through http and falling foul of the default security
constraint. Hopefully changing / removing the constraints will solve the
problem.
Gary
--On 04 February 2010 09:36 -0500
wrote:
Hi,the
Thanks for pointing that out Gary, that has solved the problem with
Admin UI, we can now successfully authenticate straight through to theUI
as required.
For the Lite UI, I have had a look at the grouper error log for any
entries when trying to access the Lite UI, the only error we seem to
catch from groupers perspective is;
2010-02-04 14:17:51,471: [TP-Processor6] ERROR
PopulateErrorAction.execute(70) - Caught '403' for
/grouper/grouperUi/appHtml/grouper.html
I have set the logging to catch everything at the moment. We have been
looking around the code ourselves to try and work out why its behaving
like it is, but so far a bit of a loss.
Thanks
Richard
----------------------
GW Brown, Information Systems and Computing
----------------------
GW Brown, Information Systems and Computing
- Lite UI Authentication, richard . james, 02/03/2010
- Re: [grouper-users] Lite UI Authentication, GW Brown, Information Systems and Computing, 02/03/2010
- RE: [grouper-users] Lite UI Authentication, Richard James, 02/04/2010
- RE: [grouper-users] Lite UI Authentication, Chris Hyzer, 02/03/2010
- RE: [grouper-users] Lite UI Authentication, Richard James, 02/04/2010
- RE: [grouper-users] Lite UI Authentication, Chris Hyzer, 02/04/2010
- RE: [grouper-users] Lite UI Authentication, Richard James, 02/04/2010
- <Possible follow-up(s)>
- Re: Lite UI Authentication, richard . james, 02/04/2010
- Re: [grouper-users] Re: Lite UI Authentication, GW Brown, Information Systems and Computing, 02/04/2010
- RE: [grouper-users] Re: Lite UI Authentication, Richard James, 02/04/2010
- RE: [grouper-users] Re: Lite UI Authentication, GW Brown, Information Systems and Computing, 02/04/2010
- RE: [grouper-users] Re: Lite UI Authentication, Richard James, 02/04/2010
- Re: [grouper-users] Re: Lite UI Authentication, GW Brown, Information Systems and Computing, 02/04/2010
- Re: [grouper-users] Lite UI Authentication, GW Brown, Information Systems and Computing, 02/03/2010
Archive powered by MHonArc 2.6.16.