Return-Path: Delivered-To: apmail-geronimo-user-archive@www.apache.org Received: (qmail 63957 invoked from network); 22 Jan 2010 03:04:03 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 22 Jan 2010 03:04:03 -0000 Received: (qmail 48312 invoked by uid 500); 22 Jan 2010 03:04:02 -0000 Delivered-To: apmail-geronimo-user-archive@geronimo.apache.org Received: (qmail 48238 invoked by uid 500); 22 Jan 2010 03:04:02 -0000 Mailing-List: contact user-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: user@geronimo.apache.org List-Id: Delivered-To: mailing list user@geronimo.apache.org Received: (qmail 48230 invoked by uid 99); 22 Jan 2010 03:04:01 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 22 Jan 2010 03:04:01 +0000 X-ASF-Spam-Status: No, hits=2.2 required=10.0 tests=HTML_MESSAGE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of xhhsld@gmail.com designates 209.85.221.200 as permitted sender) Received: from [209.85.221.200] (HELO mail-qy0-f200.google.com) (209.85.221.200) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 22 Jan 2010 03:03:53 +0000 Received: by qyk38 with SMTP id 38so381130qyk.25 for ; Thu, 21 Jan 2010 19:03:32 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=7EcsXJ745R7M5aeELQsN6pms6zS4GVj87xZC/YcFSHc=; b=ZHofxbP76RAID98uoZ8uP77S+nZzpYN9msUrMkMPL6xNgZ/xmgo111slAUz2jr4N0/ ykhT9ELqtYnjjgZzbVlDJd1suGHiYQw4nn3iFEm8QM2RZKl8qvQvB0nZdHaRIe3MesGN D8B7BNfsSaBY9tkHjVpkoE85NxzXsP9Cwpa5g= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=HkKY81qIqHgMlxskDB3vSeaHjh+k/DvBR6ra2PVD43yltc9ZJIPe5tMNCDnN3KfEnq LMMmqrQWOA5V37MUFo5nSwr078w/0T531w7Ztes04BPKMyfDWjzwGaxzbHk1wkFGTxxe NjAAwKRUHTGAwguIWzfkgEHPGsO+3BJ50no6A= MIME-Version: 1.0 Received: by 10.229.32.10 with SMTP id a10mr1452050qcd.105.1264129412569; Thu, 21 Jan 2010 19:03:32 -0800 (PST) In-Reply-To: <27259739.post@talk.nabble.com> References: <27259739.post@talk.nabble.com> Date: Fri, 22 Jan 2010 11:03:32 +0800 Message-ID: <45f744e41001211903i6921de61hdfc784fa709484a3@mail.gmail.com> Subject: Re: How to configure Single Sign On for G 2.2 with Tomcat From: Ivan To: user@geronimo.apache.org Content-Type: multipart/alternative; boundary=0016364eeec0961a83047db81094 --0016364eeec0961a83047db81094 Content-Type: text/plain; charset=ISO-8859-1 I am afraid that Geronimo 2.2 might not support the SSO function provided by Tomcat, as all the authentication work has been taken over by Geronimo. Maybe you could try some other solutions, like CAS, etc, personally, it is stronger. 2010/1/21 boes > > Hi, > > I'm trying to configure Single Sign On (SSO) in Geronimo 2.2 with Tomcat, > but I can't get it to work. In Geronimo 2.1.4 the SSO configuration is done > by adding a gbean in config.xml and I had no problem to make that work. > > In the documentation for 2.2 I found that SSO configuration is similar as > for 2.1.4, as explained in > > http://cwiki.apache.org/GMOxDOC22/managing-valve.html#ManagingValve-AddasecondValve > > But copying the example from the documentation into config.xml results in a > failure at startup. The following error message is printed in geronimo.out > : > ERROR [GBeanInstanceState] Error while starting; GBean is now in the FAILED > state: > > abstractName="org.apache.geronimo.configs/tomcat6/2.2/car?configurationName=org.apache.geronimo.configs/tomcat6/2.2/car" > org.apache.geronimo.kernel.config.InvalidConfigException: New GBeans must > be > specified with a GBeanInfo and a full AbstractName > configuration=org.apache.geronimo.configs/tomcat6/2.2/car > gbeanName=AccessLogValve > > In the release notes at > http://www.apache.org/dist/geronimo/2.2/RELEASE_NOTES-2.2.txt I found > that: > "The Tomcat server is now configured through native server.xml > configuration > files rather than gbeans." So I tried to enable SSO by uncommenting the > following entry: > > > But that didn't make any difference. The SSO doesn't work. > > What is the preferred method of configuring Tomcat, gbean or server.xml? > Did > someone manage to configure SSO for G 2.2 and Tomcat? How did you do it? > Any > suggestions? > > Thanks for any help, > Boes > > -- > View this message in context: > http://old.nabble.com/How-to-configure-Single-Sign-On-for-G-2.2-with-Tomcat-tp27259739s134p27259739.html > Sent from the Apache Geronimo - Users mailing list archive at Nabble.com. > > -- Ivan --0016364eeec0961a83047db81094 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable I am afraid that Geronimo 2.2 might not support the SSO function provided b= y Tomcat, as all the authentication work has been taken over by Geronimo.Maybe you could try some other solutions, like CAS, etc, personally, it i= s stronger.

2010/1/21 boes <gjbh@xs4all.nl>

Hi,

I'm trying to configure Single Sign On (SSO) in Geronimo 2.2 with Tomca= t,
but I can't get it to work. In Geronimo 2.1.4 the SSO configuration is = done
by adding a gbean in config.xml and I had no problem to make that work.

In the documentation for 2.2 I found that SSO configuration is similar as for 2.1.4, as explained in
http://cwiki.apache.org/GMOxDOC22/ma= naging-valve.html#ManagingValve-AddasecondValve

But copying the example from the documentation into config.xml results in a=
failure at startup. The following error message is printed in geronimo.out = :
ERROR [GBeanInstanceState] Error while starting; GBean is now in the FAILED=
state:
abstractName=3D"org.apache.geronimo.configs/tomcat6/2.2/car?configurat= ionName=3Dorg.apache.geronimo.configs/tomcat6/2.2/car"
org.apache.geronimo.kernel.config.InvalidConfigException: New GBeans must b= e
specified with a GBeanInfo and a full AbstractName
configuration=3Dorg.apache.geronimo.configs/tomcat6/2.2/car
gbeanName=3DAccessLogValve

In the release notes at
http://www.apache.org/dist/geronimo/2.2/RELEASE_NOTES-2.2.= txt I found that:
"The Tomcat server is now configured through native server.xml configu= ration
files rather than gbeans." So I tried to enable SSO by uncommenting th= e
following entry:
<Valve className=3D"org.apache.catalina.authenticator.SingleSignOn&= quot;/>

But that didn't make any difference. The SSO doesn't work.

What is the preferred method of configuring Tomcat, gbean or server.xml? Di= d
someone manage to configure SSO for G 2.2 and Tomcat? How did you do it? An= y
suggestions?

Thanks for any help,
Boes

--
View this message in context: http://old.nabble.com/How-to-configure-Single-Sign-On-for-G-= 2.2-with-Tomcat-tp27259739s134p27259739.html
Sent from the Apache Geronimo - Users mailing list archive at Nabble.com.



--
Ivan
--0016364eeec0961a83047db81094--