siteminder

micro services authentication using SAML and Identity Provider

偶尔善良 提交于 2019-12-11 11:44:14
问题 We are working on the development of micro services for our domain. We have a requirement to secure the micro services using SAML. I read through the SAML docs and see that there would an Identity provider to which we have register our application (SP) and also we should connect to IdP for authentication. I understand that we need to establish a circle of trust or federation between them. I tried using the Spring Security SAML extension and SSOCircle.com as IdP for authentication using the

Cordova Hybrid app integration with Siteminder Protected REST resource

半世苍凉 提交于 2019-12-06 11:23:50
I have a HTML5/JQuery cordova hybrid application which communicates with external REST webservice to get the data for the page dynamic content. These REST resources are protected by Siteminder SSO. All calls to the webservice are intercepted by siteminder and if the session is not active it throws up the siteminder login challenge page. How can we handle the siteminder login page in the mobile app? Presently we have index.html on which onload, the page(index.html) is submitted and hits the protected REST service but siteminder intercepts to throw the challenge page. After authentication, it it

cURL and Siteminder authentication

。_饼干妹妹 提交于 2019-12-06 06:30:29
We are trying to automate certain data collection using cURL. Unfortunately the source system is protected by siteminder. (Web Access Management Software). I tried using the normal command curl -kL -o my_data.xml -u username:password https://example.com/location/of/file (though the username & password are correct, its displaying error) Error HTTP Status 401 - This request requires HTTP authentication (). Any idea how to connect and fetch data from a siteminder authenticated page? Cheers Use the SiteMinder reference to find the required parameters needed for the login.fcc template: SiteMinder

Extending php SoapClient for siteminder authentication

▼魔方 西西 提交于 2019-12-06 03:39:53
问题 Short Version I want to extend SoapClient so it does this internally when accessing the WSDL: curl -L -E /location/of/cert.pem -c /tmp/location/of/cookie.jar https://web-service-provider/servicename?wsdl Long Version I've got a SOAP request similar to this: $serviceUrl = 'https://service-url'; $wsdl = $serviceUrl . '?wsdl'; $proxyServiceUrl = 'http://localhost/myproxy.php?url=$serviceUrl'; $proxyWsdl = 'http://localhost/myproxy.php?url=$wsdl'; $options = array( 'cache_wsdl' => WSDL_CACHE_NONE

HTTP request from a C# desktop application to a Siteminder-protected server

…衆ロ難τιáo~ 提交于 2019-12-05 13:51:26
问题 I have developed a C# desktop application which makes HTTPS requests to the customers' servers ( usually Documentum/SharePoint/Alfresco/NemakiWare/etc HTTPS-based servers ). Several customers have asked us to support their servers which are protected by CA SSO ( new name of Siteminder ). QUESTION: What do I need to do to allow my application to send HTTPS requests (and receive responses) with CA SSO-protected servers? I have developed NTLM-SSO support for our C# desktop application and it

Integrating Spring Security with SiteMinder

[亡魂溺海] 提交于 2019-12-04 10:03:07
问题 How do you integrate Spring Security with SiteMinder to receive a User and Role? I have a project setup with Spring Security 'in-memory' and I want to use convert it to accept SiteMinder header with User and Roles. If SiteMinder will send the role of the user (ROLE_READ,ROLE_WRITE) and have the Service layer grant access. How do you convert the in-memory to use SiteMinder? In-Memory User Roles List of users and roles for in-memory <authentication-manager> <authentication-provider> <user

Extending php SoapClient for siteminder authentication

眉间皱痕 提交于 2019-12-04 08:17:43
Short Version I want to extend SoapClient so it does this internally when accessing the WSDL: curl -L -E /location/of/cert.pem -c /tmp/location/of/cookie.jar https://web-service-provider/servicename?wsdl Long Version I've got a SOAP request similar to this: $serviceUrl = 'https://service-url'; $wsdl = $serviceUrl . '?wsdl'; $proxyServiceUrl = 'http://localhost/myproxy.php?url=$serviceUrl'; $proxyWsdl = 'http://localhost/myproxy.php?url=$wsdl'; $options = array( 'cache_wsdl' => WSDL_CACHE_NONE, 'encoding' => 'utf-8', 'soap_version' => SOAP_1_1, 'exceptions' => true, 'trace' => true, 'location'

HTTP request from a C# desktop application to a Siteminder-protected server

╄→尐↘猪︶ㄣ 提交于 2019-12-04 00:11:41
I have developed a C# desktop application which makes HTTPS requests to the customers' servers ( usually Documentum/SharePoint/Alfresco/NemakiWare/etc HTTPS-based servers ). Several customers have asked us to support their servers which are protected by CA SSO ( new name of Siteminder ). QUESTION: What do I need to do to allow my application to send HTTPS requests (and receive responses) with CA SSO-protected servers? I have developed NTLM-SSO support for our C# desktop application and it works well, but I am not sure about how to proceed for CA SSO. I have asked the same question on the CA

How can I trust that the SiteMinder HTTP headers haven't been tampered with?

僤鯓⒐⒋嵵緔 提交于 2019-12-03 05:06:42
问题 I am completely new to SiteMinder and SSO in general. I poked around on SO and CA's web site all afternoon for a basic example and can't find one. I don't care about setting up or programming SM or anything like that. All of that is already done by someone else. I just want to adapt my JS web app to use SM for authentication. I get that SM will add a HTTP header with a key such as SM_USER that will tell me who the user is. What I don't get is -- what prevents anyone from adding this header

Integrating Spring Security with SiteMinder

假装没事ソ 提交于 2019-12-03 03:55:35
How do you integrate Spring Security with SiteMinder to receive a User and Role? I have a project setup with Spring Security 'in-memory' and I want to use convert it to accept SiteMinder header with User and Roles. If SiteMinder will send the role of the user (ROLE_READ,ROLE_WRITE) and have the Service layer grant access. How do you convert the in-memory to use SiteMinder? In-Memory User Roles List of users and roles for in-memory <authentication-manager> <authentication-provider> <user-service> <user name="test" password="test" authorities="ROLE_READ" /> <user name="admin" password="admin"