I'm thinking of integrating an Umbraco installation with an external site login. I was thinking I could have a login form in Umbraco which posts the login credentials to the server. The server sends the credentials to an external site (over SSL). The external site would return some XML with roles, permissions and a session cookie which would be passed to the browser. Unfortunately, I'm a Java bod so I'm not sure how easily I can latch into the asp.net/umbraco authentication framework to do this (I've done it before using Spring/Struts and Java). Any thoughts?
The Umbraco site is a subdomain (e.g. foo.bar.com) of the external site (e.g. wibble.bar.com) so they can share a single domain based session cookie without any problems. So, logging into one site would log you into both.
Not really a wizard at this myself but it should be possible to use another membership provider. Maybe you can find more information and inspiration by reading the wiki entires here: http://our.umbraco.org/wiki/how-tos/membership-providers
This would be for members authenticating to the website (rather than authors or administrators). As well as authenticating them in in case they move across to the other site (for a smooth browsing experience) I could also pull in some information from the other site such as areas of interest and location that I would use in the xslt within Umbraco to personalise the Umbraco site.
We eventually achieved this starting from the Danish SAML2 integration and building our own partial SAML2 extension to ja-sig CAS. I originally tried using Shibboleth on top of ja-sig CAS but couldn't find my way through the documentation/configuration and was getting all sorts of problems when using them together in a cluster. The OIOSAML itself is ok although lacking in decent logging when you are configuring it (you will need to get the source code to figure out what is going wrong). The Umbraco role provider built on top of OIOSAML didn't actually work as far as we could see. However, it contained enough that we managed to unpick it and write our own.
Using an external login
I'm thinking of integrating an Umbraco installation with an external site login. I was thinking I could have a login form in Umbraco which posts the login credentials to the server. The server sends the credentials to an external site (over SSL). The external site would return some XML with roles, permissions and a session cookie which would be passed to the browser. Unfortunately, I'm a Java bod so I'm not sure how easily I can latch into the asp.net/umbraco authentication framework to do this (I've done it before using Spring/Struts and Java). Any thoughts?
The Umbraco site is a subdomain (e.g. foo.bar.com) of the external site (e.g. wibble.bar.com) so they can share a single domain based session cookie without any problems. So, logging into one site would log you into both.
Hi Andy
Not really a wizard at this myself but it should be possible to use another membership provider. Maybe you can find more information and inspiration by reading the wiki entires here: http://our.umbraco.org/wiki/how-tos/membership-providers
/Jan
Are you talking about members authenticating to your website or users authenticating to the Umbraco back office?
This would be for members authenticating to the website (rather than authors or administrators). As well as authenticating them in in case they move across to the other site (for a smooth browsing experience) I could also pull in some information from the other site such as areas of interest and location that I would use in the xslt within Umbraco to personalise the Umbraco site.
You could create your own membership provider to swap out for the default one. There's an Active Directory Membership Provider here: http://our.umbraco.org/projects/backoffice-extensions/active-directory-and-umbraco-authentication you could grab the source code for that and modify it to use your authentication maybe?
We eventually achieved this starting from the Danish SAML2 integration and building our own partial SAML2 extension to ja-sig CAS. I originally tried using Shibboleth on top of ja-sig CAS but couldn't find my way through the documentation/configuration and was getting all sorts of problems when using them together in a cluster. The OIOSAML itself is ok although lacking in decent logging when you are configuring it (you will need to get the source code to figure out what is going wrong). The Umbraco role provider built on top of OIOSAML didn't actually work as far as we could see. However, it contained enough that we managed to unpick it and write our own.
is working on a reply...