[jboss-user] [Security & JAAS/JBoss] - Re: JBoss federated SSO setup
do-not-reply at jboss.com
Tue Jul 1 09:08:35 EDT 2008
anonymous wrote :
| Is that true the domain in the server.cfg.xml file should match the security domain associated with the web apps (which is what I did)?
The domain for server.cfg.xml has nothing to do with the security domain specified with the low level JAAS authentication/login module setup.
This value of domain in jboss-federation-server.sar/conf/server.cfg.xml must be the actual web domain at which the web application is hosted
Also part of debugging make sure the SAML token is issued at the domain level. Like for instance ssosite1.com or ssosite2.com depending on which application you log into
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4161777#4161777
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4161777
More information about the jboss-user