Sun Java System Identity Server 2004Q2 
Sample 
 
Main Page

Authentication PostProcessing SPI Sample : ISAuthPostProcessSample

This file explains how to compile , deploy and configure the Authentication Post Processing SPI Sample. 

On Solaris

Steps to compile the ISAuthPostProcessSample Sample program on Solaris 

Follow the steps given below to compile the sample found under <installroot>/SUNWam/samples/authentication/spi/postprocess .
 
  • Set the following environment variables. These variables will be used to run the gmake command. You can also set these variables in the Makefile. This Makefile is in the same directory (<install-root>/SUNWam/samples/authentication/spi/postprocess) as the Authentication Post Processing Sample program files. 
    • JAVA_HOME

    • Set this variable to your installation of JDK. The JDK should be version 1.3.1_06 or higher. 
    • CLASSPATH

    • Set this variable to refer to am_services.jar which can be found in the <install-root>/SUNWam/lib directory. (Note: Include jaas.jar in your classpath if you are using JDK version less than JDK1.4) 
    • BASE_DIR

    • Set this variable to the directory where the Identity Server is installed. 
    • BASE_CLASS_DIR

    • Set this variable to the directory where all the Sample compiled classes are located. 
    • JAR_DIR

    • Set this variable to the directory where the JAR files of the Sample compiled classes will be created. 
  • Go to the <install-root>/SUNWam/samples/authentication/spi/postprocess directory and run gmake. 
  • Steps to "deploy" the ISAuthPostProcess Sample program

    • Copy ISAuthPostProcess.jar from JAR_DIR to <install-root>/SUNWam/lib. 
    • Update classpath with  ISAuthPostProcessSample.jar  in the Web Container  from which this sample has to run .For use with Sun ONE Webserver or App Server, go to server instance's config directory  and modify server.xml.for all other containers consult their documentation.
    • Restart Identity Server 

    Steps to configure Authentication Post Processing SPI:

          The Authentication PostProcessing Sample can be configured at the Organization,Service or 
           Role level. 
           Configuring ISAuthPostProcess Sample for Organization :
    • Log in to Identity Server console as amAdmin to http://<host>.<domain>:<port>/<Console-Deploy-URI>
    • Select the "Identity Management" tab view and select your organization. 
    • Select "Services" from the "View" menu. 
    • Click on "Core" in the navigation frame under "Authentication". 
    • Add "com.iplanet.am.samples.authentication.spi.postprocess.ISAuthPostProcessSample" to "Authentication PostProcessing Class" attribute 
    • Click on "Save" to save the changes. 
    • Log out 
    • Enter URL http://<host>.<domain>:<port>/<Service-Deploy-URI>/UI/Login(If you choose to use an organization other than the default, please specify that in the URL using the 'org' parameter.) 
    • The postprocessing SPI will get executed on successful authentication, failed authentication and on  Logout. 
    Configuring ISAuthPostProcess Sample for Service:
      • Log in to Identity Server console as amAdmin to http://<host>.<domain>:<port>/<Console-Deploy-URI>
      • Select the "Identity Management" tab view and select your organization. Select "Services" from the "View" menu. 
      • Select Authentication Configuration 
      • Select "New Instance" from the Service Instance frame displayed on the right. 
      • Define service name. 
      • Add "com.iplanet.am.samples.authentication.spi.postprocess.ISAuthPostProcessSample" to "Authentication PostProcessing Class" attribute. 
      • Click on "Submit" to save the changes. 
      • Select Service Name and defined the Authentication Configuration for the new service. 
      • Log out 
      • Enter URL http://<host>.<domain>:<port>/<Service-Deploy-URI>/UI/Login?service=<servicename> (If you choose to use an organization other than the default, please specify that in the URL using the "org" parameter.) 
      • The postprocessing SPI will get executed on successful authentication,failed authentication and on Logout for the service accessed. 
    Configuring ISAuthPostProcess Sample for Role:
      • Log in to Identity Server console as amAdmin to http://<host>.<domain>:<port>/<Console-Deploy-URI>
      • Select the "Identity Management" tab view and select your organization. Select "Roles" from the "View" menu. 
      • Select Role and View Properties for the Role. 
      • Select Services from the Role "View" Menu. 
      • Select "Edit" to edit Authentication Configuration 
      • Add "com.iplanet.am.samples.authentication.spi.postprocess.ISAuthPostProcessSample" to "Authentication PostProcessing Class" attribute. 
      • Click on "Submit" to save the changes. 
      • Log out 
      • Enter URL http://<host>.<domain>:<port>/<Service-Deploy-URI>/UI/Login?role=roleName

      • (If you choose to use an organization other than the default, please specify that in the URL using the "org" parameter.) 
      • The postprocessing SPI will get executed on successful authentication,failed authentication and on Logout for the service accessed. 
      • Log out

    On Windows2000

    Steps to compile the Login Module Sample program on Windows2000

      • Go to the <install-root>\samples\authentication\spi\postprocess directory and run make. 

    Steps to deploy the ISAuthPostProcessSample Sample program

    • Copy ISAuthPostProcess.jar from JAR_DIR to <install-root>\SUNWam\lib
    • Update classpath with  ISAuthPostProcess.jar  in the Web Container  from which this sample has to run.
    • Restart Identity Server ("<install-root>\bin\amserver start). 

    Steps to configure Authentication Post Processing SPI:

    This sample can be can be set in the Core Auth Service for Organization and  Authentication Configuration Service for Role OR Service. 

    Refer to this section in the "On Solaris"  section in this document.