以下是ISAM和MobileFirst 6.3之间基于LTPA令牌的身份验证的设置: ISAM设备托管登录页面并使用MobileFirst 6.3服务器中的ltpa.keys生成LTPA令牌。 ISAM还连接到LDAP以对用户进行身份验证,最终用户将生成的ltpaToken2 cookie转发给MobileFirst 6.3服务器。我已配置以下authenticationConfig.xml
<securityTests>
...
<customSecurityTest name="ISAMforWorklight-web-securityTest">
<test realm="wl_antiXSRFRealm" />
<test realm="WASLTPARealm" isInternalUserID="true" />
<test realm="HeaderAuthRealm"/>
</customSecurityTest>
</securityTests>
<realms>
...
<realm loginModule="WASLTPAModule" name="WASLTPARealm">
<className>com.worklight.core.auth.ext.WebSphereFormBasedAuthenticator</className>
<parameter name="login-page" value="/login.html"/>
<parameter name="error-page" value="/loginError.html"/>
</realm>
</realms>
<loginModules>
...
<loginModule name="WASLTPAModule">
<className>com.worklight.core.auth.ext.WebSphereLoginModule</className>
</loginModule>
</loginMoudles>
Server.xml包含:
<ltpa keysFileName="<app>/resources/security/ltpa.keys" keysPassword="whatever" expiration="120"/>
抛出以下异常。根据我的理解,当在请求中提供ltpaToke2时,默认登录处理程序应该在MobileFirst中无效地工作。不知道我在这里缺少什么。
==&GT; trace.log&lt; == [7/22/15 20:28:03:229 UTC] 000000eb id = com.worklight.core.auth.ext.WebSphereFormBasedAuthenticator I processRequest FWLSE0055I:无法识别。 [项目工作灯] [7/22/15 20:28:03:230 UTC] 000000eb id =
com.worklight.core.auth.ext.WebSphereFormBasedAuthenticator 1 processRequest处理请求无法识别[project worklight] [7/22/15 20:28:03:230 UTC] 000000eb id =
com.worklight.core.auth.ext.WebSphereFormBasedAuthenticator&lt; processRequest RETURN