Return-Path: X-Original-To: apmail-archiva-users-archive@www.apache.org Delivered-To: apmail-archiva-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id A401CEA69 for ; Wed, 9 Jan 2013 09:12:58 +0000 (UTC) Received: (qmail 45051 invoked by uid 500); 9 Jan 2013 09:12:58 -0000 Delivered-To: apmail-archiva-users-archive@archiva.apache.org Received: (qmail 44796 invoked by uid 500); 9 Jan 2013 09:12:56 -0000 Mailing-List: contact users-help@archiva.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@archiva.apache.org Delivered-To: mailing list users@archiva.apache.org Received: (qmail 44751 invoked by uid 99); 9 Jan 2013 09:12:54 -0000 Received: from minotaur.apache.org (HELO minotaur.apache.org) (140.211.11.9) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 09 Jan 2013 09:12:54 +0000 Received: from localhost (HELO mail-lb0-f177.google.com) (127.0.0.1) (smtp-auth username olamy, mechanism plain) by minotaur.apache.org (qpsmtpd/0.29) with ESMTP; Wed, 09 Jan 2013 09:12:54 +0000 Received: by mail-lb0-f177.google.com with SMTP id n10so868634lbo.8 for ; Wed, 09 Jan 2013 01:12:52 -0800 (PST) Received: by 10.112.82.226 with SMTP id l2mr27565058lby.51.1357722772579; Wed, 09 Jan 2013 01:12:52 -0800 (PST) MIME-Version: 1.0 Received: by 10.112.76.231 with HTTP; Wed, 9 Jan 2013 01:12:32 -0800 (PST) In-Reply-To: References: <752E8CB3-1B21-41BC-A6C9-24955A76DD2A@apache.org> From: Olivier Lamy Date: Wed, 9 Jan 2013 10:12:32 +0100 Message-ID: Subject: Re: How to setup Archiva / Redback to use Servlet Container authentication? To: users@archiva.apache.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable 2013/1/8 Ronoaldo Pereira Oferta =DAnica : > Hello Brett, > > Thank you for your quick reply! If you can guide me I will be very happy = do > implement this and publish as open source! > > I just found that Tomcat has an SSO Valve, and wold love to be able to us= e > that solution to single-sigon between my archiva and jenkins war > deployments on a Tomcat instalation. Do you think that this is doable? If= I > understood properly, I have to implement the security stuff on the web.xm= l > plus the archiva user / roles discover mechanism (redback plugin) to trus= t > the container authentication right? correct. A UserManager implementation. Then an Authorizer (to map roles to you authz mechanism). Maybe have a look at what is done for ldap. I just committed some stuff for that. > > Kind regards! > > > > > 2013/1/3 Brett Porter > >> If I recall, there were some early attempts at this, but nothing present >> in the code at the moment. >> >> Happy to provide some pointers if you would like to help integrate it >> though! >> >> - Brett >> >> On 04/01/2013, at 4:43 AM, Ronoaldo Pereira Oferta =DAnica < >> rpereira@ofertaunica.com.br> wrote: >> >> > Hello Archiva users and developers, >> > >> > Is there a way to configure Archiva / Redback to use the Servlet >> Container >> > Authentication (Realm)? I want to deploy some apps (Jenkins, Archiva, >> etc.) >> > and manage all users via the Containe auth. The main idea is to manage >> them >> > to use >> > >> > My intention is to accept both basic and OpenID authentication in the >> > container, and I guess this may work for my use case. >> > >> > Thanks! >> > >> > -- >> > *Ronoaldo Jos=E9 de Lana Pereira* >> >> -- >> Brett Porter >> brett@apache.org >> http://brettporter.wordpress.com/ >> http://au.linkedin.com/in/brettporter >> http://twitter.com/brettporter >> >> >> >> >> >> > > > -- > *Ronoaldo Jos=E9 de Lana Pereira > *Departamento de Tecnologia da Informa=E7=E3o > > *Plataforma Oferta =DAnica* > http://www.ofertaunica.com/ > S=E3o Paulo: (11) 2666-4085 / Ramal 450 -- Olivier Lamy Talend: http://coders.talend.com http://twitter.com/olamy | http://linkedin.com/in/olamy