Hi,
I want to implement a Shibboleth infrastructure in order to manage SSO authentication with Geoserver. It would seems that it is possible.
I found some documentation in this link http://www.geo-solutions.it/blog/developers-corner-configuring-geoserver-work-shibboleth-ldap/
Did someone already used this solution ?
My environment is :
• Windows 2008 R2 x64
•Oracle 11g R2 x64
• Geoserver 2.61
• Apache 7.0.47 x64
•Java 1.7
Thanks for your help.
Best regards,
Kamardine
Hi Kamardine,
2015-01-22 16:30 GMT+01:00 Kamardine YOUSSOUFA <Kamardine.YOUSSOUFA@anonymised.com>:
Hi,
I want to implement a Shibboleth infrastructure in order to manage SSO authentication with Geoserver. It would seems that it is possible.
I found some documentation in this link http://www.geo-solutions.it/blog/developers-corner-configuring-geoserver-work-shibboleth-ldap/
I personally wrote the blog post and participated to an integration of Shibboleth SSO with GeoServer for one of our customers.
So I can tell you that it can be done. It’s not so simple (mostly installing and configuring Shibboleth it’s the most complex part, in my opinion, while integrating it with Geoserver was simpler).
It all depends on what are your specific requirements and your situation: do you already have a Shibboleth base SSO infrastructure or need to create one?
Regards,
Mauro
Dott. Mauro Bartolomeoli
@mauro_bart
Senior Software Engineer
GeoSolutions S.A.S.
Via Poggio alle Viti 1187
55054 Massarosa (LU)
Italy
phone: +39 0584 962313
fax: +39 0584 1660272
http://www.geo-solutions.it
http://twitter.com/geosolutions_it
AVVERTENZE AI SENSI DEL D.Lgs. 196/2003
Le informazioni contenute in questo messaggio di posta elettronica e/o nel/i file/s allegato/i sono da considerarsi strettamente riservate. Il loro utilizzo è consentito esclusivamente al destinatario del messaggio, per le finalità indicate nel messaggio stesso. Qualora riceviate questo messaggio senza esserne il destinatario, Vi preghiamo cortesemente di darcene notizia via e-mail e di procedere alla distruzione del messaggio stesso, cancellandolo dal Vostro sistema. Conservare il messaggio stesso, divulgarlo anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo per finalità diverse, costituisce comportamento contrario ai principi dettati dal D.Lgs. 196/2003.
The information in this message and/or attachments, is intended solely for the attention and use of the named addressee(s) and may be confidential or proprietary in nature or covered by the provisions of privacy act (Legislative Decree June, 30 2003, no.196 - Italy’s New Data Protection Code).Any use not in accord with its purpose, any disclosure, reproduction, copying, distribution, or either dissemination, either whole or partial, is strictly forbidden except previous formal approval of the named addressee(s). If you are not the intended recipient, please contact immediately the sender by telephone, fax or e-mail and delete the information in this message that has been received in error. The sender does not give any warranty or accept liability as the content, accuracy or completeness of sent messages and accepts no responsibility for changes made after they were sent or for other risks which arise as a result of e-mail transmission, viruses, etc.
Hi,
I haven’t a Shibboleth base SSO infrastructure, I need to create one or use any other solutions which allow me to implement SSO authentication with Geoserver.
Thanks in advance for your hep,
Regards,
Kamardine
Envoyé : jeudi 22 janvier 2015 16:37
Hi Kamardine,
2015-01-22 16:30 GMT+01:00 Kamardine YOUSSOUFA <Kamardine.YOUSSOUFA@anonymised.com>:
Hi,
I want to implement a Shibboleth infrastructure in order to manage SSO authentication with Geoserver. It would seems that it is possible.
I found some documentation in this link http://www.geo-solutions.it/blog/developers-corner-configuring-geoserver-work-shibboleth-ldap/
I personally wrote the blog post and participated to an integration of Shibboleth SSO with GeoServer for one of our customers.
So I can tell you that it can be done. It’s not so simple (mostly installing and configuring Shibboleth it’s the most complex part, in my opinion, while integrating it with Geoserver was simpler).
It all depends on what are your specific requirements and your situation: do you already have a Shibboleth base SSO infrastructure or need to create one?
Regards,
Mauro
–
Dott. Mauro Bartolomeoli
@mauro_bart
Senior Software Engineer
GeoSolutions S.A.S.
Via Poggio alle Viti 1187
55054 Massarosa (LU)
Italy
phone: +39 0584 962313
fax: +39 0584 1660272
http://www.geo-solutions.it
http://twitter.com/geosolutions_it
AVVERTENZE AI SENSI DEL D.Lgs. 196/2003
Le informazioni contenute in questo messaggio di posta elettronica e/o nel/i file/s allegato/i sono da considerarsi strettamente riservate. Il loro utilizzo è consentito esclusivamente al destinatario del messaggio, per le finalità indicate nel messaggio stesso. Qualora riceviate questo messaggio senza esserne il destinatario, Vi preghiamo cortesemente di darcene notizia via e-mail e di procedere alla distruzione del messaggio stesso, cancellandolo dal Vostro sistema. Conservare il messaggio stesso, divulgarlo anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo per finalità diverse, costituisce comportamento contrario ai principi dettati dal D.Lgs. 196/2003.
The information in this message and/or attachments, is intended solely for the attention and use of the named addressee(s) and may be confidential or proprietary in nature or covered by the provisions of privacy act (Legislative Decree June, 30 2003, no.196 - Italy’s New Data Protection Code).Any use not in accord with its purpose, any disclosure, reproduction, copying, distribution, or either dissemination, either whole or partial, is strictly forbidden except previous formal approval of the named addressee(s). If you are not the intended recipient, please contact immediately the sender by telephone, fax or e-mail and delete the information in this message that has been received in error. The sender does not give any warranty or accept liability as the content, accuracy or completeness of sent messages and accepts no responsibility for changes made after they were sent or for other risks which arise as a result of e-mail transmission, viruses, etc.
Hi Kamardine,
2015-01-23 10:57 GMT+01:00 Kamardine YOUSSOUFA <Kamardine.YOUSSOUFA@anonymised.com>:
Hi,
I haven’t a Shibboleth base SSO infrastructure, I need to create one or use any other solutions which allow me to implement SSO authentication with Geoserver.
Ok, so I think you can also have a look at CAS (https://wiki.jasig.org/display/CAS/Home) which is an SSO officially supported in GeoServer through an extension.
You can find an article abouty CAS and GeoServer here: http://www.geo-solutions.it/blog/geoserver-and-cas/
Regards,
Mauro
–
Dott. Mauro Bartolomeoli
@mauro_bart
Senior Software Engineer
GeoSolutions S.A.S.
Via Poggio alle Viti 1187
55054 Massarosa (LU)
Italy
phone: +39 0584 962313
fax: +39 0584 1660272
http://www.geo-solutions.it
http://twitter.com/geosolutions_it
AVVERTENZE AI SENSI DEL D.Lgs. 196/2003
Le informazioni contenute in questo messaggio di posta elettronica e/o nel/i file/s allegato/i sono da considerarsi strettamente riservate. Il loro utilizzo è consentito esclusivamente al destinatario del messaggio, per le finalità indicate nel messaggio stesso. Qualora riceviate questo messaggio senza esserne il destinatario, Vi preghiamo cortesemente di darcene notizia via e-mail e di procedere alla distruzione del messaggio stesso, cancellandolo dal Vostro sistema. Conservare il messaggio stesso, divulgarlo anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo per finalità diverse, costituisce comportamento contrario ai principi dettati dal D.Lgs. 196/2003.
The information in this message and/or attachments, is intended solely for the attention and use of the named addressee(s) and may be confidential or proprietary in nature or covered by the provisions of privacy act (Legislative Decree June, 30 2003, no.196 - Italy’s New Data Protection Code).Any use not in accord with its purpose, any disclosure, reproduction, copying, distribution, or either dissemination, either whole or partial, is strictly forbidden except previous formal approval of the named addressee(s). If you are not the intended recipient, please contact immediately the sender by telephone, fax or e-mail and delete the information in this message that has been received in error. The sender does not give any warranty or accept liability as the content, accuracy or completeness of sent messages and accepts no responsibility for changes made after they were sent or for other risks which arise as a result of e-mail transmission, viruses, etc.