Expand my Community achievements bar.

SOLVED

Custom Jackrabbit Oak Identity Provider

Avatar

Level 1
Level 1
10/15/15 7:27:57 PM

Greetings,

I just wrote my own external Oak identity provider (1) based on LDAP identity provider in the Oak project (2) and configured it based on instructions in AEM documentation (3).

I must have missed something since the authenticate method (4) is never called even if the service is activated and the identity provider name seems to be accepted. Do i need some additional JAAS configuration somewhere or what might be the problem?

Thank you in advance.

1) http://jackrabbit.apache.org/oak/docs/security/authentication/externalloginmodule.html
2) http://jackrabbit.apache.org/oak/docs/security/authentication/ldap.html
3) http://docs.adobe.com/docs/en/aem/6-0/administer/security/ldap-config.html
4) http://jackrabbit.apache.org/oak/docs/apidocs/org/apache/jackrabbit/oak/spi/security/authentication/...

Views

582

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Level 10
Level 10
10/15/15 7:27:57 PM

The out of the box LdapIdentityProvider is a service implementing the ExternalIdentityProvider interface. 
The source code of [1] might get you some hints..

[1]   https://github.com/apache/jackrabbit-oak/tree/1.2/oak-auth-ldap

View solution in original post

Views

352

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
2 Replies

Avatar

Correct answer by
Level 10
Level 10
10/15/15 7:27:57 PM

The out of the box LdapIdentityProvider is a service implementing the ExternalIdentityProvider interface. 
The source code of [1] might get you some hints..

[1]   https://github.com/apache/jackrabbit-oak/tree/1.2/oak-auth-ldap

Views

353

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 1
Level 1
10/15/15 7:27:57 PM

Thank you for your answer.

Yes. That is the one i used as my template and everything seems to be running ok. It's just that the authenticate method on that identity provider never gets called.

I'm not sure if i'm missing something in the configuration. For example, what should i put in the "JAAS Realm" textfield in "Apache Jackrabbit Oak External Login Module" configuration? Is the default "jackrabbit.oak" or "com.day.crx" or empty or something else..?

Views

359

Replies

0
Sign in to like this content

Total Likes

Translate
Translate