Weblogic

This guide will walk you through the steps to get a JOSSO agent up and running in a Weblogic execution environment. JOSSO agents follow a different versioning scheme than the server/distribution. Agent versions are currently 1.8.13 or 1.8.14, and are included in the server distribution.

Integration Overview

JOSSO's Weblogic agent integrates into Weblogic using the Security Providers contract. The installation process will generate a Weblogic component that will be available in the server console later.

Prerequisites and Requirements

To make a quick JOSSO setup we will need: JDK 1.8+ : For optimal results Weblogic 12g (11.x or 10.x also supported) and JOSSO 2.5.x

For the purposes of this guide, we will assume the following facts:

JDK 1.8 is located at /opt/jdk8
Weblogic 12.0 is located at /opt/bea/wlserver_12.0
JOSSO 2.5.1 is located at /opt/atricore/josso-ee-2.5.1/server

Weblogic Agent Install

You will have to install an agent in each container onto which Jossified web application will run. For example, if you have applications deployed on Weblogic and JBoss, you will have to install an agent in each container. Agents are part of the Service Provider (partner application) runtime environment. The SSO agent acts as a filter that handles the SSO protocol and manages the container security context. The security context provides information about the current user, such as the user identifier, roles and properties. These values depend on how you configured the identity provider. The context can be accessed by applications using standard Java EE Security API for both web and EJB tiers. See the provided sample application for details.

Assumptions

The following assumptions are made:

Oracle Java Development Kit 8 is used by WCS
Weblogic server 12g is used
Weblogic server is installed at: /opt/Oracle/Middleware
The Weblogic domain used is sso_domain
The Weblogic server used is AdminServer

You MUST modify these instructions accordingly when using different deployment settings.

Activation

There are two ways to install or activate the agent in your server: automatic and manual. The first method will copy all resources to your server based on the execution environment properties. The second option requires that you manually perform this task. We provide scripts that can be used during manual activation.

Automatic Activation

If the execution environment is properly configured, you can use the JOSSO 2 Activation option (only in 2.4.3 update #19 and above). The activation will install all required JARs and the josso-agent-config.xml file. Go to the execution environment Activation section; check the Reactivate option and save the identity appliance. When activating a remote server you need to start a JOSSO instance on the target environment as well, and configure the remote host endpoint; for instance: http://myappserver.com:8081 . You can stop and remove the JOSSO install after activating the application server. Future updates to the configuration can be done by just replacing the agent configuration file.

JOSSO will use the properties configured in the execution environment to perform the activation. Some properties can be overwritten using activation command options like target. The domain property MUST be relative to the target value (either the one configured, or the one passed as an option)

target: the folder pointing to the server folder: /opt/Oracle/Middleware/Oracle_Home/wlserver
domain: the folder pointing to the domain, RELATIVE to the target : ../../user_projects/domains/my_domain

Activation command help

karaf@josso-ee>appliance:activate --help
DESCRIPTION
        appliance:activate

        Activate Execution Environment

SYNTAX
        appliance:activate [options] appliance id/name exec-env

ARGUMENTS
        appliance id/name
                Identity Appliance\'s name or ID
        exec-env
                Execution environment name

OPTIONS
        --dest-pwd
                Activate execution environment at remote destination using provided password
        -v, --verbose
                Print out additional information
        -d, --destination
                Activate execution environment at remote destination (http://<sso-server>:8081)
        -f, --force
                Force activation
                (defaults to false)
        --dest-usr
                Activate execution environment at remote destination using provided username
        --help
                Display this help message
        -r, --replace
                Replace configuration files
                (defaults to false)
        -t, --target
                Activate execution environment at target location. (Overrides configured location)
        -s, --samples
                Activate sample partner application
                (defaults to false)

Activation command example for local execution environment (wl server)

karaf@josso-ee>appliance:activate -f -v -t /opt/Oracle/Middleware/wlserver my-appliance-1 my-wl-server-1

You MUST configure the environment variable POST_CLASSPATH and point to the folder containing the agent configuration file. You may move the file from the default location used by the activator.

Agent configuration file

mkdir "$WL_DOMAIN"/josso-cfg
cp /tmp/josso-agent-wl-config.xml $WL_DOMAIN/josso-cfg/josso-agent-config.xml
export POST_CLASSPATH=$WL_DOMAIN/josso-cfg

Manual Activation

The manual activation also requires a JOSSO instance on the target server, but you don’t need to start it. We will only use resources included in the install.

Copy Resources

The following script will copy all resources to the domain lib folderL

#!/bin/bash

JOSSO_HOME="/opt/atricore/josso-ee-2.5.1/server"

WL_HOME="/opt/Oracle/Middleware/wlserver_12"

WL_DOMAIN="/opt/Oracle/Middleware/user_projects/domains/sso_domain"

find "$JOSSO_HOME"/josso -name xbean-spring-3.4.3.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name aopalliance-1.0.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name blueprint-parser-1.3.1.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-beanutils-1.6.1.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-codec-1.4.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-collections-3.0.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-digester-1.5.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-discovery-0.2.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-httpclient-3.1.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-lang-2.0.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-logging-1.1.1.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-logging-api-1.0.4.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name commons-modeler-1.1.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name josso-agents-bin-1.8.14-SNAPSHOT-jaxws.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name josso-agent-shared-1.8.14-SNAPSHOT.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name josso-servlet-agent-1.8.14-SNAPSHOT.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name josso-weblogic12-agent-1.8.14-SNAPSHOT.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name log4j-1.2.14.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name org.apache.aries.blueprint.api-1.0.1.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name org.apache.aries.blueprint.noosgi-1.1.2.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name slf4j-api-1.7.5.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name slf4j-log4j12-1.7.5.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name spring-aop-2.5.5.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name spring-beans-2.5.5.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name spring-context-2.5.5.jar -exec cp {} "$WL_DOMAIN"/lib \;
find "$JOSSO_HOME"/josso -name spring-core-2.5.5.jar -exec cp {} "$WL_DOMAIN"/lib \;

Copy Agent Configuration file

You need to export the configuration for the execution environment and copy the file while renaming it to josso-agent-config.xml.

The target location is the $WL_DOMAIN folder:

mkdir "$WL_DOMAIN"/josso-cfg
cp /tmp/josso-agent-wl-config.xml $WL_DOMAIN/josso-cfg/josso-agent-config.xml
export POST_CLASSPATH=$WL_DOMAIN/josso-cfg

Compile SSO Agent Managed Beans

Weblogic requires that you compile Authentication Providers using its own tools, to create Managed Beans (extensions). The mbean.bat script is used for this task. If all paths are correctly configured, running the script will install the SSO Authenticator after compiling and packaging the authenticator.

#!/bin/bash

JAVA_HOME="/opt/Oracle/jdk6"

JOSSO_HOME="/opt/atricore/josso-ee-2.5.1/server"

WL_HOME="/opt/Oracle/Middleware/wlserver_12"

WL_DOMAIN="/opt/Oracle/Middleware/user_projects/domains/sso_domain"

PATH=$JAVA_HOME/bin:$PATH

mkdir "$WL_DOMAIN"/lib/mbeantypes

"$JAVA_HOME"/bin/java -Dfiles="$JOSSO_HOME"/josso/dist/agents/src/josso-weblogic12-agent-mbeans-src -DMDF="$JOSSO_HOME"/josso/dist/agents/src/josso-weblogic12-agent-mbeans-src/org/josso/wls10/agent/mbeans/JOSSOAuthenticatorProviderImpl.xml -DtargetNameSpace=urn:org:josso:wls10:agent:mbeans -DschemaLocation="$JOSSO_HOME"/josso/dist/agents/src/josso-weblogic12-agent-mbeans-src/org/josso/wls10/agent/mbeans/JOSSOAuthenticatorProviderImpl.xml -DpreserveStubs=false -DcreateStubs=true -classpath "$JOSSO_HOME"/josso/dist/agents/bin/josso-agents-bin-1.8.14-SNAPSHOT-jaxws.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-agent-shared-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss32-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss40-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat85-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-liferay5-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-weblogic12-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-gatein-agent-main-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-agents-bin-1.8.14-SNAPSHOT-axis.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jbportal27-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat50-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-alfresco-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-servlet-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss42-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat60-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-applet-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss7-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jaspi-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-weblogic12-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-weblogic92-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-gatein-agent-authenticator-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat70-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat80-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat55-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-geronimo-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-liferay6-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss5-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/activation-1.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/asm-2.2.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-ws-metadata_2.0_spec-1.1.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/xbean-spring-3.4.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/spring-core-2.5.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-bindings-xml-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-httpclient-3.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-stax-api_1.0_spec-1.0.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/blueprint-parser-1.3.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-collections-3.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/logback-classic-1.0.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-logging-1.1.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-activation_1.1_spec-1.0.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-digester-1.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-beanutils-1.6.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/org.apache.aries.blueprint.api-1.0.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-frontend-jaxws-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-ws-addr-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-bindings-soap-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/XmlSchema-1.4.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/spring-aop-2.5.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-modeler-1.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-tools-common-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/jcl-over-slf4j-1.6.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-annotation_1.0_spec-1.1.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/wsdl4j-1.6.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-api-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/wstx-asl-3.2.8.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-ant-1.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-discovery-0.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-databinding-jaxb-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/portal-identity-lib-2.7.1.GA.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-javamail_1.4_spec-1.6.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-lang-2.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-saaj-1.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-core-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-jaxws_2.1_spec-1.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/aopalliance-1.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/jaxb-impl-2.1.9.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/org.apache.aries.blueprint.noosgi-1.1.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/org.apache.aries.proxy.api-1.0.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/spring-beans-2.5.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/saaj-api-1.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-codec-1.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/slf4j-api-1.6.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/org.apache.aries.blueprint.core-1.4.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/neethi-2.0.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/jaxb-api-2.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/saaj-impl-1.3.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-1.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-wsdl4j-1.5.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-jaxrpc-1.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/log4j-1.2.14.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-logging-api-1.0.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/FastInfoset-1.2.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/xml-resolver-1.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-frontend-simple-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-common-schemas-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/spring-context-2.5.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-common-utilities-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/logback-core-1.0.0.jar:/"$WL_HOME"/server/lib/EccpressoAsn1.jar:/"$WL_HOME"/server/lib/EccpressoJcae.jar:/"$WL_HOME"/server/lib/cryptoj.jar:/"$WL_HOME"/server/lib/bea_wls_remote_deployer.jar:/"$WL_HOME"/server/lib/wlthint3client.jar:/"$WL_HOME"/server/lib/EccpressoCore.jar:/"$WL_HOME"/server/lib/weblogic-zh_CN.jar:/"$WL_HOME"/server/lib/mysql-connector-java-commercial-5.1.17-bin.jar:/"$WL_HOME"/server/lib/wllog4j.jar:/"$WL_HOME"/server/lib/ojdbc6.jar:/"$WL_HOME"/server/lib/jcom.jar:/"$WL_HOME"/server/lib/jrmp.jar:/"$WL_HOME"/server/lib/xqrl.jar:/"$WL_HOME"/server/lib/weblogic-fr.jar:/"$WL_HOME"/server/lib/weblogic.jar:/"$WL_HOME"/server/lib/weblogic-de.jar:/"$WL_HOME"/server/lib/weblogic-L10N.jar:/"$WL_HOME"/server/lib/wldeploy.jar:/"$WL_HOME"/server/lib/weblogic-ja.jar:/"$WL_HOME"/server/lib/weblogic-spring.jar:/"$WL_HOME"/server/lib/cryptojFIPS.jar:/"$WL_HOME"/server/lib/wlw-langx-zh_CN.jar:/"$WL_HOME"/server/lib/wlw-langx-zh_TW.jar:/"$WL_HOME"/server/lib/wlw-langx-ko.jar:/"$WL_HOME"/server/lib/xmlx.jar:/"$WL_HOME"/server/lib/jms51-interop.jar:/"$WL_HOME"/server/lib/wls-api.jar:/"$WL_HOME"/server/lib/wljmxclient.jar:/"$WL_HOME"/server/lib/aqapi.jar:/"$WL_HOME"/server/lib/bea_wls_async_response.jar:/"$WL_HOME"/server/lib/wldb2.jar:/"$WL_HOME"/server/lib/webserviceclient+ssl.jar:/"$WL_HOME"/server/lib/weblogic-es.jar:/"$WL_HOME"/server/lib/wljmsclient.jar:/"$WL_HOME"/server/lib/ons.jar:/"$WL_HOME"/server/lib/weblogic-ko.jar:/"$WL_HOME"/server/lib/wseeclient.jar:/"$WL_HOME"/server/lib/wlsafclient.jar:/"$WL_HOME"/server/lib/pcl2.jar:/"$WL_HOME"/server/lib/wsse.jar:/"$WL_HOME"/server/lib/wlw-langx.jar:/"$WL_HOME"/server/lib/weblogic-zh_TW.jar:/"$WL_HOME"/server/lib/wlinformix.jar:/"$WL_HOME"/server/lib/wl-j2ee-client.jar:/"$WL_HOME"/server/lib/ucp.jar:/"$WL_HOME"/server/lib/wlcommons-logging.jar:/"$WL_HOME"/server/lib/weblogic-it.jar:/"$WL_HOME"/server/lib/wlsybase.jar:/"$WL_HOME"/server/lib/diagnostics-agent.jar:/"$WL_HOME"/server/lib/wlnmclient.jar:/"$WL_HOME"/server/lib/fmwgenerictoken.jar:/"$WL_HOME"/server/lib/mejb.jar:/"$WL_HOME"/server/lib/wlconnector.jar:/"$WL_HOME"/server/lib/wlw-langx-ja.jar:/"$WL_HOME"/server/lib/wljarbuilder.jar:/"$WL_HOME"/server/lib/weblogic-pt_BR.jar:/"$WL_HOME"/server/lib/wlsaft3client.jar:/"$WL_HOME"/server/lib/webservices.jar:/"$WL_HOME"/server/lib/wlcipher.jar:/"$WL_HOME"/server/lib/wlsqlserver.jar:/"$WL_HOME"/server/lib/wlclient.jar:/"$WL_HOME"/server/lib/jrmpclient.jar:/"$WL_HOME"/server/lib/api.jar:/"$WL_HOME"/server/lib/webserviceclient.jar:/"$WL_HOME"/server/lib/wlw-wsee-soapfault.jar:"$JAVA_HOME"/lib/tools.jar:"$JAVA_HOME"/jre/lib/psfont.properties.ja:"$JAVA_HOME"/jre/lib/fontconfig.SuSE.10.properties.src:"$JAVA_HOME"/jre/lib/currency.data:"$JAVA_HOME"/jre/lib/fontconfig.SuSE.10.bfc:"$JAVA_HOME"/jre/lib/alt-rt.jar:"$JAVA_HOME"/jre/lib/deploy:"$JAVA_HOME"/jre/lib/jfr:"$JAVA_HOME"/jre/lib/charsets.jar:"$JAVA_HOME"/jre/lib/amd64:"$JAVA_HOME"/jre/lib/sound.properties:"$JAVA_HOME"/jre/lib/fontconfig.RedHat.5.bfc:"$JAVA_HOME"/jre/lib/cmm:"$JAVA_HOME"/jre/lib/management:"$JAVA_HOME"/jre/lib/fontconfig.Turbo.bfc:"$JAVA_HOME"/jre/lib/plugin.jar:"$JAVA_HOME"/jre/lib/fontconfig.RedHat.6.properties.src:"$JAVA_HOME"/jre/lib/jvm.hprof.txt:"$JAVA_HOME"/jre/lib/content-types.properties:"$JAVA_HOME"/jre/lib/jfr.jar:"$JAVA_HOME"/jre/lib/calendars.properties:"$JAVA_HOME"/jre/lib/fontconfig.RedHat.6.bfc:"$JAVA_HOME"/jre/lib/applet:"$JAVA_HOME"/jre/lib/fontconfig.SuSE.11.bfc:"$JAVA_HOME"/jre/lib/net.properties:"$JAVA_HOME"/jre/lib/fontconfig.bfc:"$JAVA_HOME"/jre/lib/zi:"$JAVA_HOME"/jre/lib/meta-index:"$JAVA_HOME"/jre/lib/deploy.jar:"$JAVA_HOME"/jre/lib/fontconfig.RedHat.5.properties.src:"$JAVA_HOME"/jre/lib/management-agent.jar:"$JAVA_HOME"/jre/lib/javaws.jar:"$JAVA_HOME"/jre/lib/images:"$JAVA_HOME"/jre/lib/security:"$JAVA_HOME"/jre/lib/resources.jar:"$JAVA_HOME"/jre/lib/jce.jar:"$JAVA_HOME"/jre/lib/jfxrt.jar:"$JAVA_HOME"/jre/lib/classlist:"$JAVA_HOME"/jre/lib/flavormap.properties:"$JAVA_HOME"/jre/lib/fontconfig.SuSE.11.properties.src:"$JAVA_HOME"/jre/lib/desktop:"$JAVA_HOME"/jre/lib/rt.jar:"$JAVA_HOME"/jre/lib/ext:"$JAVA_HOME"/jre/lib/fontconfig.Turbo.properties.src:"$JAVA_HOME"/jre/lib/psfontj2d.properties:"$JAVA_HOME"/jre/lib/fontconfig.properties.src:"$JAVA_HOME"/jre/lib/jsse.jar:"$JAVA_HOME"/jre/lib/logging.properties:"$JAVA_HOME"/jre/lib/oblique-fonts:"$JAVA_HOME"/jre/lib/fonts:"$JAVA_HOME"/jre/lib/jexec:"$JAVA_HOME"/jre/lib/javafx.properties:"$JAVA_HOME"/jre/lib/locale weblogic.management.commo.WebLogicMBeanMaker

"$JAVA_HOME"/bin/java -Dfiles="$JOSSO_HOME"/josso/dist/agents/src/josso-weblogic12-agent-mbeans-src -DMJF=/"$WL_DOMAIN"/lib/mbeantypes/josso-weblogic12-agent-mbeans.jar -DpreserveStubs=false -DcreateStubs=true -classpath "$JOSSO_HOME"/josso/dist/agents/bin/josso-agents-bin-1.8.14-SNAPSHOT-jaxws.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-agent-shared-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss32-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss40-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat85-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-liferay5-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-weblogic12-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-gatein-agent-main-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-agents-bin-1.8.14-SNAPSHOT-axis.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jbportal27-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat50-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-alfresco-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-servlet-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss42-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat60-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-applet-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss7-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jaspi-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-weblogic12-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-weblogic92-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-gatein-agent-authenticator-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat70-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat80-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-tomcat55-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-geronimo-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-liferay6-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/josso-jboss5-agent-1.8.14-SNAPSHOT.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/activation-1.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/asm-2.2.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-ws-metadata_2.0_spec-1.1.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/xbean-spring-3.4.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/spring-core-2.5.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-bindings-xml-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-httpclient-3.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-stax-api_1.0_spec-1.0.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/blueprint-parser-1.3.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-collections-3.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/logback-classic-1.0.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-logging-1.1.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-activation_1.1_spec-1.0.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-digester-1.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-beanutils-1.6.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/org.apache.aries.blueprint.api-1.0.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-frontend-jaxws-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-ws-addr-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-bindings-soap-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/XmlSchema-1.4.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/spring-aop-2.5.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-modeler-1.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-tools-common-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/jcl-over-slf4j-1.6.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-annotation_1.0_spec-1.1.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/wsdl4j-1.6.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-api-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/wstx-asl-3.2.8.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-ant-1.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-discovery-0.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-databinding-jaxb-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/portal-identity-lib-2.7.1.GA.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-javamail_1.4_spec-1.6.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-lang-2.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-saaj-1.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-core-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/geronimo-jaxws_2.1_spec-1.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/aopalliance-1.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/jaxb-impl-2.1.9.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/org.apache.aries.blueprint.noosgi-1.1.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/org.apache.aries.proxy.api-1.0.0.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/spring-beans-2.5.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/saaj-api-1.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-codec-1.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/slf4j-api-1.6.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/org.apache.aries.blueprint.core-1.4.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/neethi-2.0.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/jaxb-api-2.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/saaj-impl-1.3.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-1.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-wsdl4j-1.5.1.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/axis-jaxrpc-1.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/log4j-1.2.14.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/commons-logging-api-1.0.4.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/FastInfoset-1.2.3.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/xml-resolver-1.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-rt-frontend-simple-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-common-schemas-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/spring-context-2.5.5.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/cxf-common-utilities-2.2.2.jar:"$JOSSO_HOME"/josso/dist/agents/bin/3rdparty/logback-core-1.0.0.jar:/"$WL_HOME"/server/lib/EccpressoAsn1.jar:/"$WL_HOME"/server/lib/EccpressoJcae.jar:/"$WL_HOME"/server/lib/cryptoj.jar:/"$WL_HOME"/server/lib/bea_wls_remote_deployer.jar:/"$WL_HOME"/server/lib/wlthint3client.jar:/"$WL_HOME"/server/lib/EccpressoCore.jar:/"$WL_HOME"/server/lib/weblogic-zh_CN.jar:/"$WL_HOME"/server/lib/mysql-connector-java-commercial-5.1.17-bin.jar:/"$WL_HOME"/server/lib/wllog4j.jar:/"$WL_HOME"/server/lib/ojdbc6.jar:/"$WL_HOME"/server/lib/jcom.jar:/"$WL_HOME"/server/lib/jrmp.jar:/"$WL_HOME"/server/lib/xqrl.jar:/"$WL_HOME"/server/lib/weblogic-fr.jar:/"$WL_HOME"/server/lib/weblogic.jar:/"$WL_HOME"/server/lib/weblogic-de.jar:/"$WL_HOME"/server/lib/weblogic-L10N.jar:/"$WL_HOME"/server/lib/wldeploy.jar:/"$WL_HOME"/server/lib/weblogic-ja.jar:/"$WL_HOME"/server/lib/weblogic-spring.jar:/"$WL_HOME"/server/lib/cryptojFIPS.jar:/"$WL_HOME"/server/lib/wlw-langx-zh_CN.jar:/"$WL_HOME"/server/lib/wlw-langx-zh_TW.jar:/"$WL_HOME"/server/lib/wlw-langx-ko.jar:/"$WL_HOME"/server/lib/xmlx.jar:/"$WL_HOME"/server/lib/jms51-interop.jar:/"$WL_HOME"/server/lib/wls-api.jar:/"$WL_HOME"/server/lib/wljmxclient.jar:/"$WL_HOME"/server/lib/aqapi.jar:/"$WL_HOME"/server/lib/bea_wls_async_response.jar:/"$WL_HOME"/server/lib/wldb2.jar:/"$WL_HOME"/server/lib/webserviceclient+ssl.jar:/"$WL_HOME"/server/lib/weblogic-es.jar:/"$WL_HOME"/server/lib/wljmsclient.jar:/"$WL_HOME"/server/lib/ons.jar:/"$WL_HOME"/server/lib/weblogic-ko.jar:/"$WL_HOME"/server/lib/wseeclient.jar:/"$WL_HOME"/server/lib/wlsafclient.jar:/"$WL_HOME"/server/lib/pcl2.jar:/"$WL_HOME"/server/lib/wsse.jar:/"$WL_HOME"/server/lib/wlw-langx.jar:/"$WL_HOME"/server/lib/weblogic-zh_TW.jar:/"$WL_HOME"/server/lib/wlinformix.jar:/"$WL_HOME"/server/lib/wl-j2ee-client.jar:/"$WL_HOME"/server/lib/ucp.jar:/"$WL_HOME"/server/lib/wlcommons-logging.jar:/"$WL_HOME"/server/lib/weblogic-it.jar:/"$WL_HOME"/server/lib/wlsybase.jar:/"$WL_HOME"/server/lib/diagnostics-agent.jar:/"$WL_HOME"/server/lib/wlnmclient.jar:/"$WL_HOME"/server/lib/fmwgenerictoken.jar:/"$WL_HOME"/server/lib/mejb.jar:/"$WL_HOME"/server/lib/wlconnector.jar:/"$WL_HOME"/server/lib/wlw-langx-ja.jar:/"$WL_HOME"/server/lib/wljarbuilder.jar:/"$WL_HOME"/server/lib/weblogic-pt_BR.jar:/"$WL_HOME"/server/lib/wlsaft3client.jar:/"$WL_HOME"/server/lib/webservices.jar:/"$WL_HOME"/server/lib/wlcipher.jar:/"$WL_HOME"/server/lib/wlsqlserver.jar:/"$WL_HOME"/server/lib/wlclient.jar:/"$WL_HOME"/server/lib/jrmpclient.jar:/"$WL_HOME"/server/lib/api.jar:/"$WL_HOME"/server/lib/webserviceclient.jar:/"$WL_HOME"/server/lib/wlw-wsee-soapfault.jar:"$JAVA_HOME"/lib/tools.jar:"$JAVA_HOME"/jre/lib/psfont.properties.ja:"$JAVA_HOME"/jre/lib/fontconfig.SuSE.10.properties.src:"$JAVA_HOME"/jre/lib/currency.data:"$JAVA_HOME"/jre/lib/fontconfig.SuSE.10.bfc:"$JAVA_HOME"/jre/lib/alt-rt.jar:"$JAVA_HOME"/jre/lib/deploy:"$JAVA_HOME"/jre/lib/jfr:"$JAVA_HOME"/jre/lib/charsets.jar:"$JAVA_HOME"/jre/lib/amd64:"$JAVA_HOME"/jre/lib/sound.properties:"$JAVA_HOME"/jre/lib/fontconfig.RedHat.5.bfc:"$JAVA_HOME"/jre/lib/cmm:"$JAVA_HOME"/jre/lib/management:"$JAVA_HOME"/jre/lib/fontconfig.Turbo.bfc:"$JAVA_HOME"/jre/lib/plugin.jar:"$JAVA_HOME"/jre/lib/fontconfig.RedHat.6.properties.src:"$JAVA_HOME"/jre/lib/jvm.hprof.txt:"$JAVA_HOME"/jre/lib/content-types.properties:"$JAVA_HOME"/jre/lib/jfr.jar:"$JAVA_HOME"/jre/lib/calendars.properties:"$JAVA_HOME"/jre/lib/fontconfig.RedHat.6.bfc:"$JAVA_HOME"/jre/lib/applet:"$JAVA_HOME"/jre/lib/fontconfig.SuSE.11.bfc:"$JAVA_HOME"/jre/lib/net.properties:"$JAVA_HOME"/jre/lib/fontconfig.bfc:"$JAVA_HOME"/jre/lib/zi:"$JAVA_HOME"/jre/lib/meta-index:"$JAVA_HOME"/jre/lib/deploy.jar:"$JAVA_HOME"/jre/lib/fontconfig.RedHat.5.properties.src:"$JAVA_HOME"/jre/lib/management-agent.jar:"$JAVA_HOME"/jre/lib/javaws.jar:"$JAVA_HOME"/jre/lib/images:"$JAVA_HOME"/jre/lib/security:"$JAVA_HOME"/jre/lib/resources.jar:"$JAVA_HOME"/jre/lib/jce.jar:"$JAVA_HOME"/jre/lib/jfxrt.jar:"$JAVA_HOME"/jre/lib/classlist:"$JAVA_HOME"/jre/lib/flavormap.properties:"$JAVA_HOME"/jre/lib/fontconfig.SuSE.11.properties.src:"$JAVA_HOME"/jre/lib/desktop:"$JAVA_HOME"/jre/lib/rt.jar:"$JAVA_HOME"/jre/lib/ext:"$JAVA_HOME"/jre/lib/fontconfig.Turbo.properties.src:"$JAVA_HOME"/jre/lib/psfontj2d.properties:"$JAVA_HOME"/jre/lib/fontconfig.properties.src:"$JAVA_HOME"/jre/lib/jsse.jar:"$JAVA_HOME"/jre/lib/logging.properties:"$JAVA_HOME"/jre/lib/oblique-fonts:"$JAVA_HOME"/jre/lib/fonts:"$JAVA_HOME"/jre/lib/jexec:"$JAVA_HOME"/jre/lib/javafx.properties:"$JAVA_HOME"/jre/lib/locale weblogic.management.commo.WebLogicMBeanMaker

Configure SSO Agent

We need to configure the SSO Agent and modify properties related with the new environment we are installing, like the IDM server host name.

The SSO Agent is configured with the following file: josso-agent-config.xml .

/opt/Oracle/Middleware/user_projects/domains/sso_domain

These are the properties that may need to be updated, in particular the endpoint.

Front-channel URLs

Modify protocol, server name and port to match the SSO system. This is the value users will access using the web browser.(i.e. … ). Also update URI Path, replace WCS with the proper execution environment name taken from the JOSSO server (Identity Appliance Definition).

gatewayLoginUrl
gatewayLogoutUrl
ignoredReferrers

Webservice endpoint

Modify JOSSO Server name and port used by the agent to perform webservices calls. This is an internal network name and port that must be resolved and accessible from the application server environment. (i.e. vsvr059085:8081 )

endpoint

IDM Webservice descritor

Modify JAR file path. Make sure that the path to josso-agents-bin-1.8.14-SNAPSHOT-jaxws.jar is correct if no internet connection is available.

wsdlLocation

Restart Weblogic

Now we must restart all Weblogic servers and enable the JOSSO Security Provider.

Configure Weblogic Security

After restarting Weblogic, we need to enable the SSO Authenticator. Access the Weblogic console and click the Security Realms in the left. Then click on myrealm.

Select the Providers tab and click New. You now need to add a new JOSSOProvider as shown in the picture:

Now modify the Default Authenticator settings by selecting it from the list, set the Control Flag to SUFFICIENT.

Do the same for thew new JOSSOAuthenticator settings by selecting it from the list, set the Control Flag to SUFFICIENT.

Finally, select the Reorder option and rearrange the authenticators as follows:

You must restart all Weblogic servers after this change.

Jossify your application for Weblogic - Quick Start

We provide a sample web application that you can review and use to test your Weblogic deployment, including both EJB and WEB tiers:

https://github.com/atricore/josso1/tree/1.8.12/examples/josso-partner-wl10[github: josso-partner-wl10]

Web Applications

Create the weblogic.xml descriptor

In your web application, create the weblogic.xml descriptor in the WEB-INF folder and map all the roles your application will use.

.weblogic.xml

<?xml version= "1.0" encoding= "UTF-8" ?>
<weblogic-web-app
xmlns="http://www.bea.com/ns/weblogic/90"
xmlns:j2ee="http://java.sun.com/xml/ns/j2ee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.bea.com/ns/weblogic/90
http://www.bea.com/ns/weblogic/90/weblogic-web-app.xsd" >
<security-role-assignment>
<role-name>role1</role-name>
<principal-name>role1</principal-name>
</security-role-assignment>
</weblogic-web-app>

Copy the wls-login-redirect.jsp page provided by josso to your application resources directory.

.login-redirect.jsp

<%@page contentType= "text/html; charset=iso-8859-1" language= "java" session= " true " %>
<% response.sendRedirect(request.getContextPath() + "/josso-wls/josso_login.jsp" ); %>

Use the following login configuration for the web applicationweb.xml

<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/wls-login-redirect.jsp</form-login-page>
<form-error-page>/wls-login-redirect.jsp</form-error-page>
</form-login-config>
</login-config>

Configure JOSSO Servlet Filters

web.xml (Weblogic 10, 11, 12, 14)

...
<!-- Uncomment if you need identity in public resources
<filter>
<filter-name>WLAuthenticatorProviderFilter</filter-name>
<description>Weblogic 10.0 Authenticator Provider Serlvet Filter</description>
<filter-class>org.josso.wls10.agent.WLSAgentServletFilter</filter-class>
</filter>
-->
<!-- Comment if you need identity in public resources -->
<filter>
<filter-name>WLSessionEnforcementServletFilter</filter-name>
<description>WebLogic 10.0 Session Enforcement Servlet Filter</description>
<filter-class>org.josso.wls10.agent.WLSSessionEnforcementServletFilter</filter-class>
</filter>
...
<!--
<filter-mapping>
<filter-name>WLAuthenticatorProviderFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
-->
<filter-mapping>
<filter-name>WLSessionEnforcementServletFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>

web.xml (Weblogic 9.2)

<!-- Uncomment if you need identity in public resources
<filter>
<filter-name>WLAuthenticatorProviderFilter</filter-name>
<description>Weblogic 9.2 Authenticator Provider Serlvet Filter</description>
<filter-class>org.josso.wls92.agent.WLSAgentServletFilter</filter-class>
</filter>
-->
<!-- Comment if you need identity in public resources -->
<filter>
<filter-name>WLSessionEnforcementServletFilter</filter-name>
<description>WebLogic 9.2 Session Enforcement Servlet Filter</description>
<filter-class>org.josso.wls92.agent.WLSSessionEnforcementServletFilter</filter-class>
</filter>
...
<!--
<filter-mapping>
<filter-name>WLAuthenticatorProviderFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
-->
<filter-mapping>
<filter-name>WLSessionEnforcementServletFilter</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping>
...

Copy additional resources

Create a josso-wls folder in your application resources directory and copy the following files:

josso_login.jsp
josso_logout.jsp
josso_security_check.jsp

You can find these files here The three of them contain the same jsp script:

<%response.sendError(javax.servlet.http.HttpServletResponse.SC_NOT_FOUND);%>

EJB applications

Create the weblogic-ejb-jar.xml descriptor

Add all the security role assignments to your application needs.

<?xml version= "1.0" encoding= "ISO-8859-1" ?>
<weblogic-ejb-jar
xmlns="http://www.bea.com/ns/weblogic/90"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.bea.com/ns/weblogic/90
http://www.bea.com/ns/weblogic/90/weblogic-ejb-jar.xsd" >
<weblogic-enterprise-bean>
...
</weblogic-enterprise-bean>
<security-role-assignment>
<role-name>role1</role-name>
<principal-name>role1</principal-name>
</security-role-assignment>
</weblogic-ejb-jar>

# Weblogic

# Integration Overview

# Prerequisites and Requirements

# Weblogic Agent Install

# Assumptions

# Activation

# Automatic Activation

# Manual Activation

# Configure SSO Agent

# Front-channel URLs

# Webservice endpoint

# IDM Webservice descritor

# Restart Weblogic

# Configure Weblogic Security

# Jossify your application for Weblogic - Quick Start

# Web Applications

# Create the weblogic.xml descriptor

# Add the wls-login-redirect.jsp page

# Configure the login-config section in the web.xml descriptor

# Configure JOSSO Servlet Filters

# Copy additional resources

# EJB applications

# Create the weblogic-ejb-jar.xml descriptor