Superpatterns Pat Patterson on the Cloud, Identity and Single Malt Scotch

8Jan/074

Audi UK using OpenSSO to service 250,000 users

Dave 'Wavy' Holroyd of Good Technology reports on his production deployment of OpenSSO in the UK today on dev@opensso.dev.java.net. With his kind permission. I'll just quote Dave here, lightly edited to turn his footnotes into hyperlinks:

Ok, so, in mid 2006 we rebuilt the Audi UK site to integrate with the Audi Global Content Management solution, and upgrade the previous, pre-J2EE technology platform. One of several features from the old site not included in the first delivery was the ability to log in to access special content and tools.

Having moved from a single-application model to a raft of independent webapps, that login functionality now requires a single sign-on solution. Also, given historical needs for integration with third-party systems and components, we wanted something based on well-thought-out Web Services, and a potential upgrade path to implement Federation.

Just before Christmas 2006, we deployed an OpenSSO system adapted with custom Authentication and Data Store plugins. These make use of the site's existing relational database containing the profiles of around a quarter of a million registered users.

We integrated login and registration functions directly into our application rather than using the generic OpenSSO user interface. This enables access to functions like 'ordering a postal brochure' by both authenticated and unauthenticated users, with the option for unauthenticated users to register toward the end of the process.

This is a great example of the kind of deployment that OpenSSO makes possible - Dave leveraged his visibility into the source code to create a solution customized to his needs, flagging some bugs in the process. Good, good, good, good, good... Good Technology!

Filed under: OpenSSO Leave a comment
Comments (4) Trackbacks (0)
  1. Could you supply more details such as exactly which products make up the Audi Global Content Management? How do they handle authorization across a federated environment? Was there any handshake with external partners or is this internally focused only?

  2. Hi James – I’ve asked Dave if he can leave a comment in response. AFAIK, there is no federation with external partners.

  3. Word from Mr Holroyd:

    This deployment doesn’t do federation, or actually integrate with the CMS yet, just simple SSO and profile sharing accross a single cluster of applications. OpenSSO provides part of the platform on which some of these things can be built in a later phase of work.

  4. that will be cool, if we know it more detail, event me now, the Netscape Directory Server user, still dont know how to use OpenSSO.


Leave a comment

No trackbacks yet.