siteminder

问题 We use SiteMinder authentication in our application. If app user tries to navigate to a particular page https://ourapp.com/myapp/#/pending/requests in our app via direct URL or via bookmarked URL, SiteMinder will redirect to a login page via 302 redirect similar to http://ourapp.com/login?redirect=https%3A%2F%2Fourapp.com%2Fmyapp%2F#/pending/requests asking for user to enter credential in a login form . After successful authentication, user should be redirected to our app and land on the

问题 please anyone can help me how to use siteminder in phonegap application? once authuntication from server side(siteminder) then proceed to phonegap application. please with help with some details i am new to Siteminder Thanks 回答1: sorry for late update of Answer, i have put an iframe on welcome page of phonegap application. then i hit my server so here comes the siteminder, my iframe is keep on tracking the home page name onload of ifram. as my username password is approved and reached home

问题 I want to configure SiteMinder to allow public access (for unauthenticated users) to a especific URI. I have created a rule to allow access to a specific URI, and a Policy that applies to all users and that rule. The realm is protected by default. And when i try to access this URI SiteMinder block the access. How can i configure the rule to allow public access for a especific URI? 回答1: You don't need a SiteMinder rule for this behavior. Use the IgnoreUrl property on the web agent

问题 I 'm trying to create a secure spring rest api using pre-authentication security for siteminder. I 've tried a solution where I 'm getting SM_USER and when I tested it in postman by adding new header SM_USER with random value it seems to work fine. If you don't provide header I'm getting an error org.springframework.security.web.authentication.preauth.PreAuthenticatedCredentialsNotFoundException: SM_USER header not found in request which is valid. But how can I be sure that this is secure? if

问题 I have a HTML5/JQuery cordova hybrid application which communicates with external REST webservice to get the data for the page dynamic content. These REST resources are protected by Siteminder SSO. All calls to the webservice are intercepted by siteminder and if the session is not active it throws up the siteminder login challenge page. How can we handle the siteminder login page in the mobile app? Presently we have index.html on which onload, the page(index.html) is submitted and hits the

问题 We are trying to automate certain data collection using cURL. Unfortunately the source system is protected by siteminder. (Web Access Management Software). I tried using the normal command curl -kL -o my_data.xml -u username:password https://example.com/location/of/file (though the username & password are correct, its displaying error) Error HTTP Status 401 - This request requires HTTP authentication (). Any idea how to connect and fetch data from a siteminder authenticated page? Cheers 回答1:

问题 We are using SiteMinder secure-proxy for our website. The problem is that some parts of our website require anonymous authentication. For example ClickOnce installer and some WCF services. I was looking into proxyrules.xml , hoping that I can do sominthing in nete:case , but it seems not to be the case. I would be very thankful if anyone could point me in the right direction. Once again here's what I need: / - sso /test/ - sso /wcf/ - anonymous How can I make /wcf exclusion? ** UPDATE ** I

问题 I'm trying to implement proper logout for my Java EE / JSF2 application. It requires two things: I need to logout from JAAS and invalidate the session I then have to navigate to an external URL to fire Siteminder logout The Siteminder logout URL (configured on the Policy server -> I cannot change it) is outside my applications context. Eg. if my webapp URL is https://localhost:8080/sm/MyWebApp then the logout URL is https://localhost:8080/anotherwebapp/logout.html. This is the current local

问题 When trying to deploy my web application on Tomcat 6 I have this error. It is caused by a SSO pass-through filter in my application. My SiteMinder version is 6.0.5.35. java.lang.UnsatisfiedLinkError: netegrity.siteminder.javaagent.AgentAPI.javaagent_api_init(Lnetegrity/siteminder/javaagent/InitDef;)I at netegrity.siteminder.javaagent.AgentAPI.javaagent_api_init(Native Method) at netegrity.siteminder.javaagent.AgentAPI.init(AgentAPI.java:509) at org.jod.realm.provider.smautenticator

问题 Our site currently is setup to use windows authentication. The user security principal is automatically set when the request gets to our code and authorization to specific files is controlled with authorization elements in our web.config. We've now been mandated to install siteminder on our server to handle authentication. Because of this the user security principal is not automatically set and our code without modification doesn't know who the user is to determine authorization. I've