{"id":4414,"date":"2012-02-28T00:04:27","date_gmt":"2012-02-28T05:04:27","guid":{"rendered":"http:\/\/jianmingli.com\/wp\/?p=4414"},"modified":"2012-06-22T08:25:54","modified_gmt":"2012-06-22T13:25:54","slug":"weblogic-security-custom-identity-provider","status":"publish","type":"post","link":"https:\/\/jianmingli.com\/wp\/?p=4414","title":{"rendered":"WebLogic Security: Servlet Authentication Filter (SAF)"},"content":{"rendered":"
\n

Contents<\/h2>\n
    \n\t
  1. \n\t\tBuild Custom Identity Provider<\/a>\n\t\t
      \n\t\t\t
    1. \n\t\t\t\tBuild wlfullclient.jar<\/a>\n\t\t\t<\/li>\n\t\t\t
    2. \n\t\t\t\tCreate Eclipse Project<\/a>\n\t\t\t<\/li>\n\t\t\t
    3. \n\t\t\t\tCreate Servlet Filter<\/a>\n\t\t\t<\/li>\n\t\t\t
    4. \n\t\t\t\tCreate a Java Class to Implement: AuthenticationProviderV2, ServletAuthenticationFilter<\/a>\n\t\t\t<\/li>\n\t\t\t
    5. \n\t\t\t\tCreate an MBeanType XML File<\/a>\n\t\t\t<\/li>\n\t\t<\/ol>\n\t
    6. \n\t\tBuild<\/a>\n\t<\/li>\n\t
    7. \n\t\tDeploy<\/a>\n\t\t
        \n\t\t\t
      1. \n\t\t\t\tCopy Provider Jar<\/a>\n\t\t\t<\/li>\n\t\t\t
      2. \n\t\t\t\tConfigure New Provider<\/a>\n\t\t\t<\/li>\n\t\t<\/ol>\n\t
      3. \n\t\tTest<\/a>\n\t<\/li>\n\t
      4. \n\t\tReferences<\/a>\n\t<\/li>\n<\/ol>\n<\/ol>\n<\/div>\n
         <\/div>\n

        Build Custom Identity Provider<\/h2><\/span>\n

        Build wlfullclient.jar<\/h3><\/span>\n

        * See this post<\/a> to build a wlfullclient.jar<\/p>\n

        Create Eclipse Project<\/h3><\/span>\n

        * Create a new Eclipse Java project named SimpleSAF
        \n* Place wlfullclient.jar in build path
        \n* Copy ${WL_HOME}\/server\/lib\/commo.dtd<\/em> to project root directory.
        \n* Create a new package named: examples.security.providers.saf.simple<\/strong><\/p>\n

        Create Servlet Filter<\/h3><\/span>\n

        * Create a new servlet filter named: TokenFilter.java<\/strong><\/p>\n

        \r\npackage examples.security.providers.saf.simple;\r\n\r\nimport java.io.IOException;\r\nimport java.util.Enumeration;\r\n\r\nimport javax.servlet.*;\r\nimport javax.servlet.http.*;\r\n\r\npublic class TokenFilter implements Filter {\r\n\r\n\tprivate FilterConfig filterConfig = null;\r\n\r\n\t@Override\r\n\tpublic void destroy() {\r\n\t\t\/\/ TODO Auto-generated method stub\r\n\r\n\t}\r\n\r\n\t@Override\r\n\tpublic void doFilter(ServletRequest request, ServletResponse response,\r\n\t\t\tFilterChain arg2) throws IOException, ServletException {\r\n\t\tSystem.out.println(\"In do filter\");\r\n\t\tHttpServletRequest req = (HttpServletRequest) request;\r\n\t\tHttpServletResponse res = (HttpServletResponse) response;\r\n\r\n\t\tEnumeration names = ((HttpServletRequest) request).getHeaderNames();\r\n\r\n\t\twhile (names.hasMoreElements()) {\r\n\t\t\tString name = (String) names.nextElement();\r\n\t\t\tSystem.out.println(\"Header Name \" + name + \" Content \"\r\n\t\t\t\t\t+ ((HttpServletRequest) request).getHeader(name));\r\n\t\t}\r\n\r\n\t}\r\n\r\n\t@Override\r\n\tpublic void init(FilterConfig fc) throws ServletException {\r\n\t\tthis.filterConfig = fc;\r\n\r\n\t}\r\n\r\n}\r\n<\/pre>\n
        Create a Java Class to Implement: AuthenticationProviderV2, ServletAuthenticationFilter<\/h3><\/span>\n
        * Named: SimpleSampleServletAuthenticationFilter.java<\/strong><\/p>\n
        \r\npackage examples.security.providers.saf.simple;\r\n\r\nimport javax.security.auth.login.AppConfigurationEntry;\r\nimport javax.servlet.Filter;\r\n\r\nimport weblogic.management.security.ProviderMBean;\r\nimport weblogic.security.spi.AuthenticationProviderV2;\r\nimport weblogic.security.spi.IdentityAsserterV2;\r\nimport weblogic.security.spi.PrincipalValidator;\r\nimport weblogic.security.spi.SecurityServices;\r\nimport weblogic.security.spi.ServletAuthenticationFilter;\r\n\r\npublic class SimpleSampleServletAuthenticationFilter implements\r\n\t\tAuthenticationProviderV2, ServletAuthenticationFilter {\r\n\r\n\tprivate String description;\r\n\t\r\n\t@Override\r\n\tpublic String getDescription() {\r\n\t\t\/\/ TODO Auto-generated method stub\r\n\t\treturn this.description;\r\n\t}\r\n\r\n\t@Override\r\n\tpublic void initialize(ProviderMBean arg0, SecurityServices arg1) {\r\n\t\tSystem.out.println(\"SimpleSampleServletAuthenticationFilter.initialize\");\r\n\r\n\t}\r\n\r\n\t@Override\r\n\tpublic void shutdown() {\r\n\t\tSystem.out.println(\"SimpleSampleServletAuthenticationFilter.shutdown\");\r\n\t}\r\n\r\n\t@Override\r\n\tpublic Filter[] getServletAuthenticationFilters() {\r\n\t\tSystem.out.println(\"SimpleSampleServletAuthenticationFilter.getServletAuthenticationFilters\");\r\n\r\n\t\tFilter[] filters = new Filter[1];\r\n\t\tTokenFilter token = new TokenFilter();\r\n\t\tfilters[0]= token;\r\n\t\treturn filters;\r\n\t}\r\n\r\n\t@Override\r\n\tpublic AppConfigurationEntry getAssertionModuleConfiguration() {\r\n\t\t\/\/ TODO Auto-generated method stub\r\n\t\treturn null;\r\n\t}\r\n\r\n\t@Override\r\n\tpublic IdentityAsserterV2 getIdentityAsserter() {\r\n\t\t\/\/ TODO Auto-generated method stub\r\n\t\treturn null;\r\n\t}\r\n\r\n\t@Override\r\n\tpublic AppConfigurationEntry getLoginModuleConfiguration() {\r\n\t\t\/\/ TODO Auto-generated method stub\r\n\t\treturn null;\r\n\t}\r\n\r\n\t@Override\r\n\tpublic PrincipalValidator getPrincipalValidator() {\r\n\t\t\/\/ TODO Auto-generated method stub\r\n\t\treturn null;\r\n\t}\r\n\r\n}\r\n<\/pre>\n
        Create an MBeanType XML File<\/h3><\/span>\n
        * Create an XML file named: SimpleSampleServletAuthenticationFilter.xml<\/strong><\/p>\n
        \r\n\r\n\r\n\r\n\r\n\r\n\t\r\n\r\n\t\r\n\r\n\t\r\n\r\n<\/MBeanType>\r\n<\/pre>\n
        * Create an Ant build.xml<\/p>\n
        \r\n\r\n\r\n\t\r\n\t\r\n\t\r\n\t\r\n\t\r\n\t\r\n\t\r\n\t\r\n\r\n\t\r\n\t\t\r\n\t\t    \r\n\t\t<\/fileset>\r\n\t\t\r\n\t\t    \r\n\t\t<\/fileset>\r\n\t\t\r\n\t\t    \r\n\t\t<\/fileset>\r\n\t\t\r\n\t\t    \r\n\t\t<\/fileset>\r\n\t<\/path>\r\n\t\r\n\t\r\n\t\r\n    \t\r\n        \r\n          \r\n            \r\n          <\/fileset>\r\n        <\/copy>\r\n        \r\n          \r\n            \r\n            \r\n          <\/fileset>\r\n        <\/copy>\r\n    <\/target>\r\n\r\n\t\r\n\r\n\t\r\n\t    \r\n\t      \r\n\t      <\/classpath>\r\n\t    <\/java>\r\n\t<\/target>\r\n\r\n\t\r\n\t\t\r\n\t\t\r\n\t\t\r\n\t<\/target>\r\n\r\n<\/project>\r\n<\/pre>\n
        Build<\/h2><\/span>\n
        * Run Ant task rebuild<\/em>. A provider jar file named SimpleSampleServletAuthenticationFilter.jar<\/strong> should be generated in the build <\/em>directory.<\/p>\n
        Deploy<\/h2><\/span>\n
        Copy Provider Jar<\/h3><\/span>\n
        * Copy generated provider jar file, i.e. SimpleSampleServletAuthenticationFilter.jar<\/em>,  into $WL_HOME\/server\/lib\/mbeantypes<\/em> directory.
        \n* Restart Weblogic server.<\/p>\n
        Configure New Provider<\/h3><\/span>\n
        * Login WLS admin console
        \n* Go to Security Realms > myrealm > Providers > Authentication<\/em>
        \n* Create a new Simple Sample Identity Asserter named SimpleSAF<\/strong><\/p>\n
        <\/h6><\/span>\n
        * Restart WLS<\/p>\n
        Test<\/h2><\/span>\n
        References<\/h2><\/span>\n
        * Custom Identity Asserter for Weblogic Server<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"
        Build Custom Identity Provider Build wlfullclient.jar * See this post to build a wlfullclient.jar Create Eclipse Project * Create a new Eclipse Java project named SimpleSAF * Place wlfullclient.jar in build path * Copy ${WL_HOME}\/server\/lib\/commo.dtd to project root directory. * … Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_exactmetrics_skip_tracking":false,"_exactmetrics_sitenote_active":false,"_exactmetrics_sitenote_note":"","_exactmetrics_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[91],"tags":[],"class_list":["post-4414","post","type-post","status-publish","format-standard","hentry","category-weblogic"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p8cRUO-19c","_links":{"self":[{"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4414","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4414"}],"version-history":[{"count":9,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4414\/revisions"}],"predecessor-version":[{"id":4760,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=\/wp\/v2\/posts\/4414\/revisions\/4760"}],"wp:attachment":[{"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4414"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4414"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jianmingli.com\/wp\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4414"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}