Forum Discussion

mengler_136249's avatar
mengler_136249
Icon for Nimbostratus rankNimbostratus
Jun 19, 2017

SSO into an APM session

Is it possible to SSO into an APM session?

 

My use case is this: We have an intranet set based off of Atlassian Confluence, which authenticates to Atlassian Crowd. Crowd will then pull in the user directory from LDAP. We would like to create a "SSO" portal for our users where they can go and click on any of their applications to be automatically signed into them. I am good with how to set up and configure the SSO portal itself, but the challenge I am trying to solve and having trouble with, is if I have an authenticated user already signed into Confluence, how can I put a link on Confluence, or an iFrame, such that when clicked on it will automatically sign in the user to the SSO/APM portal.

 

To the best of my knowledge, Confluence interfaces with Crowd via HTTP auth and hands back the user client a cookie. I am not 100% certain on that yet though. Im mostly interested in my options for allowing a user to SSO into an APM with credentials that have already been challenged by Confluence/Crowd and how that looks.

 

APM
application delivery
devops

1 Reply

Sort By
  • Daniel_Varela's avatar
    Daniel_Varela
    Icon for Employee rankEmployee
    Jun 20, 2017

    If you have username and password the you can sign in by send them into a authoritazion basic header to your apm virtual server. In that virtual server you need an rule like:

     

    when HTTP_REQUEST { HTTP::header insert "clientless-mode" 1 }

     

    Clientless mode will not redirect you to the logon page and it will try to authenticate you by using the credentials you put in the authenticate header. You can find more information about in the APM operation guide.