All geek questions in one place

Adding JASIG CAS Authentication for OBIEE (Oracle Business Inteligence) 11g

I am trying to add CAS as an authentication provider for OBIEE 11g.

so far I have added the jar cas-client-core-3.2.1.jar to $ MW_HOME / wlserver_10.3 / server / Library / consoleapp / WebApp / WEB-INF / Library / and configure $ MW_HOME / wlserver_10.3 / server /Library/consoleapp/WebApp/WEB-INF/web.xml with current elements:

<filter> <filter-name>CAS Authentication Filter</filter-name> <filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class> <init-param> <param-name>casServerLoginUrl</param-name> <param-value>http://192.168.0.117:8000/cas/login</param-value> </init-param> <init-param> <param-name>serverName</param-name> <param-value>https://192.168.0.170</param-value> </init-param> </filter> <filter> <filter-name>CAS Validation Filter</filter-name> <filter-class>org.jasig.cas.client.validation.Cas10TicketValidationFilter</filter-class> <init-param> <param-name>casServerUrlPrefix</param-name> <param-value>http://192.168.0.117:8000/cas</param-value> </init-param> <init-param> <param-name>serverName</param-name> <param-value>https://192.168.0.170</param-value> </init-param> </filter> <filter> <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name> <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class> </filter> <filter> <filter-name>CAS Assertion Thread Local Filter</filter-name> <filter-class>org.jasig.cas.client.util.AssertionThreadLocalFilter</filter-class> </filter> <filter-mapping> <filter-name>CAS Authentication Filter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>CAS Validation Filter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> <filter-mapping> <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping>

this applies only to the WL console and not to the OBIEE application. I am redirected to the login, but after entering the password I still need to enter the console password, and the effective user will be from CAS.

any idea of โ€‹โ€‹deploying a CAS for an OBIEE application?

Thanks, Shay

+4
source share
1 answer

OK, I decided to do this, I had to unpack the analytics.ear file and unpack analytics.war from it, add the kernel to WEB-INF / lib and add the XML on top to WEB-INF / web.xml repack analytics.war, repack analytics.ear restart weblogic

in EM-> coreapplication-> security enable SSO select a shared SSO and set the login and logout URL

Note: we had an initialization block that will fail if the user / password is not authenticated, which needs to be changed.

+2
source

Source: https://habr.com/ru/post/1444377/

More articles:


All Articles