Back after JavaOne 2009
Wow - is it really over a month since my last blog entry? I guess that’s what happens when you get your head down into a project - in this case, building a demo for CommunityOne West and JavaOne 2009 to show off the latest OpenSSO features.
The demo brought together a number of existing Java technologies - the Java Persistence API (JPA), the Jersey implementation of JAX-RS (aka JSR 311) on both the client and server, and JavaFX - with some new aspects of OpenSSO - fine-grained authorization (aka entitlements), OAuth protocol support, and a JDBC data store. Briefly, the demo centered on a cellphone account management system delivered as a JavaFX rich Internet application (RIA) client and a (more or less) RESTful web service back-end, communication between them secured by OAuth.
I’ll be uploading source code for the demo client and server apps to the OpenSSO project in the next few days, as well as documenting how to bring up the demo environment. Watch this space for updates!
Comments
edward
Hi Pat,
Have you uploaded the source code? Couldn't find them either here or opensso home page.
Thanks in advance,
Edward
Pat Patterson
Hi Edward - yes - code is all uploaded and documented at https://opensso.dev.java.net/source/browse/*checkout*/opensso/extensions/c1demo2009/README - I haven't done a big splash on it (1) because I've been really busy since J1 and (2) because I'm hoping to make it a bit easier to set up.
You (and anyone else) are welcome to follow the README in the meantime - it's all there.
Edward
Cool! Followed the instructions in README successfully.
Only one small glitch. I saw 500 error when running demo test harness at first. By looking at glassfish log, I figured that there's an unwanted 'ssl=off' property in TokenServicePool's 'Additional Properties' tab. Deleting this property solved the issue.
Hope this can help somebody ;)
Pat Patterson
Thanks, Edward - I haven't seen this error, but I updated the README with a note explaining how to fix it if you do run into it.
Please drop me an email (my email address is in the 'Contact me' section of the sidebar on the right of my blog) - I'd like to know more about what you're doing with OpenSSO :-)
Securing REST Web Services With OAuth « Superpatterns
[…] of JAX-RS, aka JSR 311). This is technology that has hitherto only been demonstrated in a demo at JavaOne 2009, so it’s great to see it being successfully applied […]
OpenSSO enables 30,000 new Google Apps business users at Valeo « Superpatterns
[…] Pat Patterson on Identity Management, Federation and Single Malt Scotch « Back after JavaOne 2009 OpenSSO and Identity Federation in Downtown Chicago […]
Mounika
Hi, I have gone through the below link
http://go4idm.blogspot.com/2010/09/securing-rest-web-services-with-oauth.html I deployed the code StockClinet ,StockServer and TokenService applications.When I am trying to generate the security key it is thorwing exceptions.I am unble to get opensso.war and read me file from http://java.net/projects/opensso/public/use/index.html
Could you please suggest me or post me somje sample code to get solutions from this.
Thanks in advance.
Pat Patterson
Hi Mounika - unfortunately, it seems like Oracle have taken down all the OpenSSO binary downloads. Forgerock have ‘rehosted’ OpenSSO as OpenAM and have the binaries available at http://www.forgerock.org/openam.html
Karthikeya V
HI I’m trying to integrate two application with help of OpenAM, Normal authentication process are working fine. My issue is when I’m invoking service which exposed in another application getting response as OpeanAM login page html script. I have sent token detail and checked authentication after that invoking that service. Please help me out about this issue.
If there is any material related to this, share with me.
Thanks in Advance
Pat Patterson
Hi Karthikeya - I haven’t worked on OpenSSO/OpenAM in more than two years - you should try the OpenAM mailing list - see http://openam.forgerock.org/mail-lists.html
Leave a Comment
Your email address will not be published. Required fields are marked *