Case #176505: Web services access through custom SSO


Description:


Hi Jive Support Team -

 

According to the current implementation, all ECN webservices are accessed with username/password approach. But ECN SSO is based on cookie, that means the authentication mechanism for webservices & site access are different. To eliminate username/password approach and have single authentication approach for both web services and site pages, made required changes to Dev environment SSO. We see all Web services requests come to SSO, and SSO reads user cookie and sets user authentication context as expected, but webservices access is still failing.

 

Please check the below log and advise. We just want to make sure whether username/password approach is mandatory to access Jive webservices, if not, why it doesn't work when SSO sets user authentication correctly and the user is given access to webservices. Thanks for all your help!

 

2012-03-16 15:15:15,076 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->In do Filter

2012-03-16 15:15:15,077 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->servletRequest.getRequestURL():http://somwebprd01.isus.emc.com/rpc/soap/subCommunityAccessService

2012-03-16 15:15:15,077 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->BEGIN!!!!

2012-03-16 15:15:15,077 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->Cookie name:ednIntegrationSSO

2012-03-16 15:15:15,077 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->Is EDN Cookie Enabled true

2012-03-16 15:15:15,077 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->isPowerLinkUser:false

2012-03-16 15:15:15,077 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->isSABAUser:false

2012-03-16 15:15:15,077 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->isEDNUser:true

2012-03-16 15:15:15,078 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->userFoundInRequest:true

2012-03-16 15:15:15,078 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->ednIntegrationSSO user suneel.kandali@emc.com this is a new user false

2012-03-16 15:15:15,079 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->Enter User Template user.getName()suneel Kandali:suneel.kandali@emc.com:suneel

2012-03-16 15:15:15,079 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->emcDomainListCount:2

2012-03-16 15:15:15,079 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->setUserToAuth: User: 20465 [suneel] [suneel.kandali@emc.com]

2012-03-16 15:15:15,100 [http-127.0.0.1-9001-1] [no-session:] ERROR com.emc.ecn.authfilter.ECNFederatedIdentityAuthFilter - UUUUUU-->String Tag--emc

2012-03-16 15:15:15,105 [http-127.0.0.1-9001-1] [no-session:ANONYMOUS] WARN org.apache.cxf.phase.PhaseInterceptorChain - Interceptor for {http://emc.com/clearspace/webservices}SubCommunityAccessService has thrown exception, unwinding now

  1. com.jivesoftware.base.UnauthorizedException: Anonymous users not allowed


-Suneel K.

Latest Comment: May 17, 2012 2:09 PM by Tyler Whitesides

Comments

More Like This