FileNet P8 Application Engine, Version 5.0.+       Application server:  WebLogic Application Server     

Editing web.xml for SSO (optional)

You can use SSO with a proxy server in your Application Engine environment. To enable this optional approach, edit the web.xml file on the WebLogic Server.

To edit web.xml for SSO

  1. Make a backup copy of web.xml.

    AE_install_path/Workplace/WEB-INF/web.xml

  2. Open web.xml for editing.
  3. Set the parameter perimeterChallengeMode to true:
    <init-param>
    <param-name>perimeterChallengeMode</param-name>
    <param-value>true</param-value>
    </init-param>
  4. As needed, set the ssoProxyContextPath, ssoProxyHost, ssoProxyPort, and ssoProxySSLPort.

    These parameter values are used to modify one or more elements of the native URL that Workplace sees on a request. Wherever the value of an SSO proxy host element in the URL request is different from the equivalent information for the host where Workplace is deployed, then you must set the corresponding sso* parameter for that element in the URL to the value for the SSO proxy host.

    <init-param>
    <param-name>ssoProxyContextPath</param-name>
    <param-value></param-value>
    </init-param>
    <init-param>
    <param-name>ssoProxyHost</param-name>
    <param-value></param-value>
    </init-param>
    <init-param>
    <param-name>ssoProxyPort</param-name>
    <param-value></param-value>
    </init-param>
    <init-param>
    <param-name>ssoProxySSLPort</param-name>
    <param-value></param-value>
    </init-param>
    In general, configure the <init-param> parameters as follows:
    ssoProxyContextPath
    Set the value to the context path of the SSO proxy host URL. This value is the path portion of the URL that appears after the server name, and which represents top-level access to the Workplace application.
    For example, if the Workplace deployment host URL is http://deploy_server:2809/Workplace and the SSO proxy host URL is http://sso_proxy_server.domain.com/fn/Workplace , then use the following value:
    <param-name>ssoProxyContextPath</param-name>
    <param-value>/fn/Workplace</param-value>
    ssoProxyHost
    Set the value to the SSO proxy host server name. Typically, this is a full domain-qualified host name.
    For example, if the host URL where Workplace is deployed is http://deploy_server/Workplace and the corresponding SSO proxy host URL is http://sso_proxy_server/Workplace, then use the following value:
    <param-name>ssoProxyHost</param-name>
    <param-value>sso_proxy_server</param-value>
    ssoProxyPort
    Set the value to the http port on the SSO proxy host.
    For example:
    <param-name>ssoProxyPort</param-name>
    <param-value>80</param-value>
    ssoProxySSLPort
    Set the value to the https port on the SSO proxy host, if defined or used to access Workplace pages.
    For example:
    <param-name>ssoProxySSLPort</param-name>
    <param-value>443</param-value>
  5. Save your changes to web.xml and close the file.


Feedback

Last updated: November 2010


© Copyright IBM Corporation 2010.
This information center is powered by Eclipse technology. (http://www.eclipse.org)