The SSO is now rolled out at the developer.scrambls.com
TWiki site. BTW, the Scrambls is an interesting technology to scramble content in any social media site. Check it out, it is free to use.
-- 
Peter Thoeny - 2012-07-01
X.509 Client certificates are another implementation of SSO - which TWiki supports via a plugin. Certificates allow access control at both the webserver and application level. They can eliminate password entry, or make it happen only in the web browser. And they support non-web applications natively (e.g. signed/encrypted e-mail.) Centralized SSO has many tradeoffs. It's important to look at all the technologies, your user base & application environment before making a choice.
-- 
Timothe Litt - 2012-07-27
Hi Peter,
This solution seems not working for Foswiki with Jasig CAS. I followed the instruction and replace all TWiki with Foswiki. The site is loaded without problem. When I clicked "Log In" it will direct to CAS login page. After entering user name and password, it still stayed in the CAS site showing "Log In Successfully" and did not redirect back to the Foswiki site.
Can you give me some idea on this? Thanks,
-- Winson Huang - 2012-08-16
I can't talk for the fork, my focus is usability and quality code on TWiki.org. In your case, if you navigate to TWiki are you actually logged in? If so, the redirect is not working properly. Check the Peter Thoeny - 2012-08-16
Hello Peter, I'm trying to setup a instalation with TWiki and OpenERP with SSO.
I've a server with CAS Jasig and ldap and,
With this SSO package I manage to autenticate but after that I' stuck in the CAS page like Winson above.
Any ideias?
I'm using twiki, last version.
My configurations parameters are:
$TWiki::cfg{SsoLoginContrib}{AuthTokenName} = 'x-authtoken-MYDOMAIN';
$TWiki::cfg{SsoLoginContrib}{VerifyAuthTokenUrl} = 'https://MYDOMAIN.com:8443/cas/validate/%AUTHTOKEN%';
$TWiki::cfg{SsoLoginContrib}{VerifyAuthTokenHeader} = 'x-sso-api-key, API key value';
$TWiki::cfg{SsoLoginContrib}{VerifyResponseLoginRE} = '"loginName":"([^"]*)';
$TWiki::cfg{SsoLoginContrib}{LoginUrl} = 'https://MYDOMAIN.com:8443/cas/login?service=%ORIGURL%';
$TWiki::cfg{SsoLoginContrib}{LogoutUrl} = 'https://MYDOMAIN.com:8443/cas/logout?service=%ORIGURL%';
If this works I will be glad to describe the entire solution, with detailed instalation procedures.
Regards
-- Antonio Sequeira - 2013-09-22
Antonio: If you use TWiki older than 5.1.1 you need to apply the patch. Upgrade to the latest SsoLoginContrib. Make sure your SSO login server supports redirect after login; verify that you specify the proper redirect URL for login. Best to open a new Support question to debug this further.
-- Peter Thoeny - 2013-09-26
TWiki site. BTW, the Scrambls is an interesting technology to scramble content in any social media site. Check it out, it is free to use.
-- Peter Thoeny - 2012-07-01
X.509 Client certificates are another implementation of SSO - which TWiki supports via a plugin. Certificates allow access control at both the webserver and application level. They can eliminate password entry, or make it happen only in the web browser. And they support non-web applications natively (e.g. signed/encrypted e-mail.) Centralized SSO has many tradeoffs. It's important to look at all the technologies, your user base & application environment before making a choice.
-- Timothe Litt - 2012-07-27
Hi Peter,
This solution seems not working for Foswiki with Jasig CAS. I followed the instruction and replace all TWiki with Foswiki. The site is loaded without problem. When I clicked "Log In" it will direct to CAS login page. After entering user name and password, it still stayed in the CAS site showing "Log In Successfully" and did not redirect back to the Foswiki site.
Can you give me some idea on this? Thanks,
-- Winson Huang - 2012-08-16
I can't talk for the fork, my focus is usability and quality code on TWiki.org. In your case, if you navigate to TWiki are you actually logged in? If so, the redirect is not working properly. Check the %ORIGURL% redirect variable in the $TWiki::cfg{SsoLoginContrib}{LoginUrl} configure setting. Test this manually. Make sure your SSO login supports redirect. Don't reply here, better to open a support question in the Support web.
-- Peter Thoeny - 2012-08-16
Hello Peter, I'm trying to setup a instalation with TWiki and OpenERP with SSO.
I've a server with CAS Jasig and ldap and,
With this SSO package I manage to autenticate but after that I' stuck in the CAS page like Winson above.
Any ideias?
I'm using twiki, last version.
My configurations parameters are:
$TWiki::cfg{SsoLoginContrib}{AuthTokenName} = 'x-authtoken-MYDOMAIN';
$TWiki::cfg{SsoLoginContrib}{VerifyAuthTokenUrl} = 'https://MYDOMAIN.com:8443/cas/validate/%AUTHTOKEN%';
$TWiki::cfg{SsoLoginContrib}{VerifyAuthTokenHeader} = 'x-sso-api-key, API key value';
$TWiki::cfg{SsoLoginContrib}{VerifyResponseLoginRE} = '"loginName":"([^"]*)';
$TWiki::cfg{SsoLoginContrib}{LoginUrl} = 'https://MYDOMAIN.com:8443/cas/login?service=%ORIGURL%';
$TWiki::cfg{SsoLoginContrib}{LogoutUrl} = 'https://MYDOMAIN.com:8443/cas/logout?service=%ORIGURL%';
If this works I will be glad to describe the entire solution, with detailed instalation procedures.
Regards
-- Antonio Sequeira - 2013-09-22
Antonio: If you use TWiki older than 5.1.1 you need to apply the patch. Upgrade to the latest SsoLoginContrib. Make sure your SSO login server supports redirect after login; verify that you specify the proper redirect URL for login. Best to open a new Support question to debug this further.
-- Peter Thoeny - 2013-09-26 
Topic revision: r7 - 2013-09-26 - PeterThoeny
Site map
Blog web
Write New Post
Blog Feed (ATOM)
Changes
Search
Notifications
Index
Statistics
Preferences
Account 
 |
 |
|
|
|
Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.Copyright © 1999-2026 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.