Hi experts,
We are implementing the EPM 11.1.2.2 on Websphere. The client already has a method authentication for all corporate systems, and needs implement this method to EPM. The method is created with JSP, that do validations about Digital Certificate, RACF, TOKEN, etc.
Checking the Documentation: http://docs.oracle.com/cd/E17236_01/epm.1112/epm_security_1112200.pdf we find two solutions: use Custom Authentication and Custom Login.
-Custom Authentication: We created a sample custom code with sucess, but the method used by client needs manipulate with HttpResonse and HttpRequest, and this option not apply, correct?
import java.util.Map;
import com.hyperion.css.CSSCustomAuthenticationIF;
public class CustomAuthenticationImpl implements CSSCustomAuthenticationIF {
public String authenticate(Map context, String userName, String password) throws Exception {
String authenticatedUserName = null;
if ((userName.equals("example"))&&(password.equals("tt"))){
authenticatedUserName = "test01";
return authenticatedUserName;
}else{
throw new Exception("Invalid User Credentials Custom Authentication");
}
}
}
This code just pass the authenticated user, the password is ignored. Trusted in your external authentication.
-Custom Login: Using the documentation example, We created the code and configurate on Shared Services with "Custom Login Class", but not worked. The EPM didn't showed login screen. In our code just set default username.
import com.hyperion.css.CSSSecurityAgentIF;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
public class customLogin implements CSSSecurityAgentIF {
@Override
public String getUserName(HttpServletRequest req, HttpServletResponse res) throws Exception {
return "test01";
}
@Override
public String getPassword(HttpServletRequest req, HttpServletResponse res) throws Exception {
return null;
}
}
If we use the Custom Login, we need develop a custom login screen (implementing the method of authentication of our client), for the user enter your informations (user name, password).
My questions:
Why in second code the user "test01" does not enter logged?
What the best form to implements legacy authentication of our client?
Thanks . . .