<?xml version="1.0" encoding="UTF-8"?> <jboss-web> <security-domain>idp</security-domain> <context-root>idp</context-root> <valve> <class-name>org.picketlink.identity.federation.bindings.tomcat.idp.IDPWebBrowserSSOValve</class-name> </valve> </jboss-web>
Introduction
The PicketLink Identity Provider Authenticator is a component responsible for the authentication of users and for issue and validate SAML assertions.
Configuring an Authenthicator for a Identity Provider
The PicketLink Authenticator is basically a Tomcat Valve (org.apache.catalina.authenticator.FormAuthenticator). The only thing you need to do is change the valves configuration for your application.
This configuration changes for each supported binding.
JBoss Application Server v7
In JBoss Application Server v7 the valves configuration are located inside the WEB-INF/jboss-web.xml file. Bellow is a example of how this file looks like:
The valve configuration is done using the <valve> element.
JBoss Application Server v5 or v6
In JBoss Application Server v5 or v6, the valves configuration are located inside the WEB-INF/context.xml file. Bellow is a example of how this file looks like:
<?xml version="1.0" encoding="UTF-8"?>
<Context>
<Valve className="org.picketlink.identity.federation.bindings.tomcat.idp.IDPWebBrowserSSOValve" />
</Context>
The valve configuration is done using the <Valve> element.
Apache Tomcat 6
In Apache Tomcat 6 the valves configuration are located inside the META-INF/context.xml file. Bellow is a example of how this file looks like:
<?xml version="1.0" encoding="UTF-8"?>
<Context>
<Valve className="org.picketlink.identity.federation.bindings.tomcat.idp.IDPWebBrowserSSOValve" />
</Context>
Built-in Authenticators
PicketLink provides default implementations for Service Provider Authenticators. The list bellow shows all the available implementations:
|
Name |
Description |
|
org.picketlink.identity.federation.bindings.tomcat.idp.IDPWebBrowserSSOValve |
Default implementation for an Identity Provider Authenticator. |