Eclipse Community Forums
Forum Search:

Search      Help    Register    Login    Home
Home » Eclipse Projects » Platform - User Assistance (UA) » Secure Infocenter
Secure Infocenter [message #472390] Tue, 25 March 2008 23:19 Go to next message
Eclipse User
Originally posted by: wlstrayer.hotmail.com

I am new to configuring "Infocenter(s)" and was asked to architect a way set
up a secure Infocenter. We are currently using Eclipse 3.3.2 and want to
require the user to forms authenticate before they are able to enter the
Infocenter. Has anyone done this? Any suggestions?

Thanks
Re: Secure Infocenter [message #472411 is a reply to message #472390] Wed, 26 March 2008 09:17 Go to previous messageGo to next message
Eclipse User
Originally posted by: nospam_kowalskilee.gmail.com

Eclipse wrote:
> I am new to configuring "Infocenter(s)" and was asked to architect a way
> set up a secure Infocenter. We are currently using Eclipse 3.3.2 and
> want to require the user to forms authenticate before they are able to
> enter the Infocenter. Has anyone done this? Any suggestions?
>
> Thanks

Hi,

I have seen an infocenter on a web site that asks users to authenticate
before entering, so it must be possible. However, I think it is done by
having authentication done by the public-facing web app server and then
the request proxied to the Eclipse-based infocenter running on another
server.

(Description of proxying to an infocenter is here in the Eclipse 3.3
doc:
http://help.eclipse.org/help33/index.jsp?topic=/org.eclipse. platform.doc.isv/guide/ua_help_setup_infocenter.htm
under "Making infocenter available on the web")

If you can use Eclipse 3.4, another possibility is to deploy the Eclipse
infocenter as a WAR as part of a web application that handles the
authentication. Enablement to deploy the infocenter as a WAR is new in
Eclipse 3.4. While the precise steps haven't been written up completely
yet, a number of people have gotten it working. You can see some details
on the enablement at: https://bugs.eclipse.org/bugs/show_bug.cgi?id=201666

In the past, to add the ability to secure access and authenticate to the
Eclipse infocenter code itself, there was some work contributed by a
member of the community under Bugzilla entry:
https://bugs.eclipse.org/bugs/show_bug.cgi?id=73285

You can read the history in the comments of that entry. A sentence in
Comment 10 implies that there is more to be solved:
"I released the code in the build, but until this is solved
it remains a hack."

That 73285 enhancement is closed, and Tomcat isn't used internally for
the help system anymore, so you would need to open a new request for
enhancement to request any additional or updated functionality.

Hope this helps,
Lee Anne
Re: Secure Infocenter [message #472413 is a reply to message #472411] Thu, 27 March 2008 21:43 Go to previous messageGo to next message
Chris Goldthorpe is currently offline Chris Goldthorpe
Messages: 815
Registered: July 2009
Senior Member
I concur with Lee Anne's suggestion that you take advantage of the Web
App as a war file feature which is new in Eclipse 3.4. This will give
the most flexibility when configuring security, you can use any security
method that your server supports.
Re: Secure Infocenter [message #472414 is a reply to message #472413] Thu, 27 March 2008 23:45 Go to previous message
Eclipse User
Originally posted by: wlstrayer.hotmail.com

I am going to recommend the App as a war solution and see if they are
willing to start testing with Eclipse 3.4. If not, then my second choice
would be custom authentication using an Apache front-end (which is currently
what they use)

Thanks for the responses Chris and Lee Anne

"Chris Goldthorpe" <cgold@us.ibm.com> wrote in message
news:fshifd$h8o$1@build.eclipse.org...
> I concur with Lee Anne's suggestion that you take advantage of the Web App
> as a war file feature which is new in Eclipse 3.4. This will give the most
> flexibility when configuring security, you can use any security method
> that your server supports.
Re: Secure Infocenter [message #611073 is a reply to message #472390] Wed, 26 March 2008 09:17 Go to previous message
Eclipse User
Originally posted by: nospam_kowalskilee.gmail.com

Eclipse wrote:
> I am new to configuring "Infocenter(s)" and was asked to architect a way
> set up a secure Infocenter. We are currently using Eclipse 3.3.2 and
> want to require the user to forms authenticate before they are able to
> enter the Infocenter. Has anyone done this? Any suggestions?
>
> Thanks

Hi,

I have seen an infocenter on a web site that asks users to authenticate
before entering, so it must be possible. However, I think it is done by
having authentication done by the public-facing web app server and then
the request proxied to the Eclipse-based infocenter running on another
server.

(Description of proxying to an infocenter is here in the Eclipse 3.3
doc:
http://help.eclipse.org/help33/index.jsp?topic=/org.eclipse. platform.doc.isv/guide/ua_help_setup_infocenter.htm
under "Making infocenter available on the web")

If you can use Eclipse 3.4, another possibility is to deploy the Eclipse
infocenter as a WAR as part of a web application that handles the
authentication. Enablement to deploy the infocenter as a WAR is new in
Eclipse 3.4. While the precise steps haven't been written up completely
yet, a number of people have gotten it working. You can see some details
on the enablement at: https://bugs.eclipse.org/bugs/show_bug.cgi?id=201666

In the past, to add the ability to secure access and authenticate to the
Eclipse infocenter code itself, there was some work contributed by a
member of the community under Bugzilla entry:
https://bugs.eclipse.org/bugs/show_bug.cgi?id=73285

You can read the history in the comments of that entry. A sentence in
Comment 10 implies that there is more to be solved:
"I released the code in the build, but until this is solved
it remains a hack."

That 73285 enhancement is closed, and Tomcat isn't used internally for
the help system anymore, so you would need to open a new request for
enhancement to request any additional or updated functionality.

Hope this helps,
Lee Anne
Re: Secure Infocenter [message #611075 is a reply to message #472411] Thu, 27 March 2008 21:43 Go to previous message
Chris Goldthorpe is currently offline Chris Goldthorpe
Messages: 815
Registered: July 2009
Senior Member
I concur with Lee Anne's suggestion that you take advantage of the Web
App as a war file feature which is new in Eclipse 3.4. This will give
the most flexibility when configuring security, you can use any security
method that your server supports.
Re: Secure Infocenter [message #611077 is a reply to message #472413] Thu, 27 March 2008 23:45 Go to previous message
Eclipse User
Originally posted by: wlstrayer.hotmail.com

I am going to recommend the App as a war solution and see if they are
willing to start testing with Eclipse 3.4. If not, then my second choice
would be custom authentication using an Apache front-end (which is currently
what they use)

Thanks for the responses Chris and Lee Anne

"Chris Goldthorpe" <cgold@us.ibm.com> wrote in message
news:fshifd$h8o$1@build.eclipse.org...
> I concur with Lee Anne's suggestion that you take advantage of the Web App
> as a war file feature which is new in Eclipse 3.4. This will give the most
> flexibility when configuring security, you can use any security method
> that your server supports.
Previous Topic:external browser support
Next Topic:Infocenter web app: JBoss context-root breaks breadcrumbs
Goto Forum:
  


Current Time: Fri Aug 29 18:22:12 EDT 2014

Powered by FUDForum. Page generated in 0.01601 seconds