0
寫在https://forums.alfresco.com/forum/installation-upgrades-configuration-integration/authentication-ldap-sso/sso-openam-06052012 中的大部分內容對我來說已足夠,但它只是它的一部分。Alfresco OpenAM與登錄URL中的Realm所需的集成
我在Open AM中使用領域,我希望重定向使用領域。
我在OpenSSOAgentBootstrap.properties更改的屬性,以反映該領域
com.sun.identity.agents.config.organization.name = /LdapRealm
和OpenSSOAgentConfiguration.properties改變如下
com.sun.identity.agents.config.login.url[0]=http://verify.organisation.com:8080/OpenAM/XUI/#login/&realm=LdapRealm
但問題是,當真正發生重定向然後URL不考慮領域(我已經嘗試過?realm = LdapRealm了/但是在liferay服務器上面的URL可以直接)
下面就是我得到重定向的(看有沒有境界顯示出來)
而且cookie的用戶沒有正確設置爲我登錄與從而得到403太
用戶哪些是我需要看的其他屬性。
----------------後來添加----------------
Strangly即使我手動更改URL到
http://verify.wipro.com:8080/OpenAM/XUI/#login/&realm=LdapRealm&goto=http%3A%2F%2Falfresco.oraganisation.com%3A8080%2Fshare%2Fpage%2F
我得到在debug.out以下錯誤/我也試過選項/ OpenAM/UI /登錄?境界= LdapRealm但自動重定向到http://verify.wipro.com:8080/OpenAM/XUI/#login/&realm=LdapRealm
錯誤讀取如下
amWebPolicy:03/24/2015 06:45:46:323 AM UTC: Thread[http-bio-8080-exec-7,5,main]
ERROR: AmWebPolicy: Unable to check policy for resource: http://alfresco.organisation.com:8080/share/page/, action: GET; Access will be denied
com.sun.identity.policy.remote.PolicyEvaluationException: Server reported Exception, serverMessage=Evaluation error.
Unable to retrieve application under realm /.
Unable to retrieve application under realm /.
at com.sun.identity.policy.client.ResourceResultCache.getResultsFromServer(ResourceResultCache.java:745)
at com.sun.identity.policy.client.ResourceResultCache.getResourceResults(ResourceResultCache.java:563)
at com.sun.identity.policy.client.ResourceResultCache.getPolicyDecision(ResourceResultCache.java:345)
at com.sun.identity.policy.client.ResourceResultCache.getPolicyDecision(ResourceResultCache.java:250)
at com.sun.identity.policy.client.PolicyEvaluator.getPolicyDecision(PolicyEvaluator.java:403)
at com.sun.identity.agents.policy.AmWebPolicy.checkPolicyForResource(AmWebPolicy.java:143)
at com.sun.identity.agents.filter.URLPolicyTaskHandler.process(URLPolicyTaskHandler.java:122)
at com.sun.identity.agents.filter.AmFilter.processTaskHandlers(AmFilter.java:194)
at com.sun.identity.agents.filter.AmFilter.isAccessAllowed(AmFilter.java:157)
at com.sun.identity.agents.filter.AmAgentBaseFilter.doFilter(AmAgentBaseFilter.java:70)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.lang.Thread.run(Thread.java:745)
在某處,它給人的感覺是Alfresco是爲根域而建的。可能需要一些開發來獲得其他領域的工作。
隨着更改URL重定向仍然無法正常工作。看起來它從某處緩存。 – 2015-03-23 10:53:03
在日誌中我越來越類似於http://stackoverflow.com/questions/21723466/openam-agent-for-tomcat-can-not-read-authservice-url錯誤看起來我可以igonore它。但它似乎也可能是一個問題的版本。我正在使用j2ee tomcat代理版本3.5&OpenAM 12 – 2015-03-23 12:06:32
如果有任何建議刪除緩存,我可以試試看。歡迎任何其他建議。我會試一試,看看它是否有效。 – 2015-03-23 17:25:14