Friday, April 2, 2010

How to Shibbolize uPortal 2.5.3.2

We completed Shibbolization of our old version of uPortal (v2.5.3.2) today. Other than a good amount of work that various team members (Chris spent most of the time on it on the SP side) and I made to setup the SP and IdP's, the uPortal changes ended up not being so bad.

Modify WEB-INF/classes/org/jasig/portal/channels/CLogin/html.xsl:

<!-- ~ If user is not authenticated insert login form-->
    <!-- ~ -->
    <xsl:template match="login-status">
        <form method="post" action="Login">
            <fieldset id="portalLogin">
                <ul><li><input class="uportal-button" name="Login" value="Login" type="submit" /></li></ul>
                <xsl:apply-templates/>
            </fieldset>
        </form>  
    </xsl:template>
This assumes that you have configured Shibboleth to guard Login under uPortal (example: https://employees.acme.com/uPortal/Login).

Modify WEB-INF/classes/properties/portal.properties:

org.jasig.portal.security.PersonManagerFactory.implementation=org.jasig.portal.security.provider.RemoteUserPersonManager
Modify WEB-INF/classes/properties/security.properties:
root=org.jasig.portal.security.provider.RemoteUserSecurityContextFactory
logoutRedirect.root=/Shibboleth.sso/Logout
and modify the logoutRedirect.root if needed.

You can also disable/modify your logout link in (tomcat)/webapps/uPortal/WEB-INF/classes/org/jasig/portal/channels/CHeader/html.xsl and html_*.xsl in that dir.

Other resources:

No comments: