Title: How to configure Single Sign-On (Extension)
Notice: Licensed to the Apache Software Foundation (ASF) under one
or more contributor license agreements. See the NOTICE file
distributed with this work for additional information
regarding copyright ownership. The ASF licenses this file
to you under the Apache License, Version 2.0 (the
"License"); you may not use this file except in compliance
with the License. You may obtain a copy of the License at
.
http://www.apache.org/licenses/LICENSE-2.0
.
Unless required by applicable law or agreed to in writing,
software distributed under the License is distributed on an
"AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
KIND, either express or implied. See the License for the
specific language governing permissions and limitations
under the License.
The default login mechanism relies on predefined users in the database with basic authentication or OpenId.
With a different [Spring security][1] configuration Apache Rave supports login based on request headers.
The following instructions assume there is already an SSO authentication service running in your network like [Shibboleth®][2]
##1) Get Apache Rave
There are multiple ways to build your custom Apache Rave instance, but the quickest is to use a Maven WAR overlay. See [Extending Apache Rave](rave-extensions.html) for an example overlay.
##2) Build the Rave SSO extension
Run the following commands in your shell/terminal/command to build the Single Sign-On extension from the Sandbox:
svn co http://svn.apache.org/repos/asf/rave/sandbox/rave-extensions/rave-extension-sso
cd rave-extension-sso
mvn install
##3) Add the Rave SSO Extension to the pom of your custom portal war
org.apache.rave.extensions
rave-extension-sso
##4) Add a custom Spring security configuration
Place the following Spring security configuration in your war overlay project (`/src/main/webapp/WEB-INF`) as `applicationContext-security-extension-sso.xml`
Change the `web.xml`
contextConfigLocation
/WEB-INF/dataContext.xml
/WEB-INF/applicationContext.xml
/WEB-INF/applicationContext-security-extension-sso.xml
##5) Customize the login.jsp
Create your own login.jsp with e.g. a welcome text and a link to your SSO login form.
[1]: http://static.springsource.org/spring-security/site/docs/3.1.x/reference/springsecurity.html
[2]: http://shibboleth.net/