Difference between revisions of "HowTo:Configure LAS Authentication"
(36 intermediate revisions by 3 users not shown) | |||
Line 1: | Line 1: | ||
− | + | Using the [[USAM#LAS_(Local_Application_Service)|Local Application Service (LAS)]] authentication mode requires to configue the {{UBIK Studio}} as well as the [[Web_Service|web service]]. | |
+ | <ol> | ||
+ | <li>Open {{UBIK Studio}} and connect to the database which should be configured for LAS.</li> | ||
+ | <li>Open [[UBIK_Studio_Basics#Database_specific_settings|database specific settings]] and set</li> | ||
+ | {| class="wikitable" | width = "50%" | ||
+ | |- | ||
+ | ! Parameter!! Value!! Comment | ||
+ | |- | ||
+ | | ''SessionManagementType''|| '''1''' || 0 = Local Management, 1 = LAS, 2 = GAS | ||
+ | |- | ||
+ | | ''SessionServiceUrl''|| <nowiki>https://SERVERNAME[:PORT]/UBIK/USAM.svc/SOAP??</nowiki> || Address of the authentication service<br />The port number ''PORT'' must be specified only if other than 443 (default for https). | ||
+ | |- | ||
+ | | ''TokenValityPeriode''|| '''300''' || Duration (in seconds) every generated token is valid. The token expires after this timespan. | ||
+ | |- | ||
+ | | ''HideAuthenticationInfo''|| '''1''' || This switch provides the possibility to turn off the detailed error information as necessary (due to security issues). | ||
+ | |} | ||
+ | </ol> | ||
+ | <ol start="3"> | ||
+ | <li>Open the [[Web Service Configuration|web.config]] of the data service and set the session's management type and URL to the according address of the web service.</li> | ||
+ | <source lang="xml"> | ||
+ | <appSettings> | ||
+ | ... | ||
+ | <add key="UBIK.Service.TokenValityPeriode" value="600" /> | ||
+ | <add key="UBIK.Service.SessionManagementType" value="1" /> | ||
+ | <add key="UBIK.Service.SessionManagementUrl" value="https://SERVERNAME[:PORT]/UBIK/USAM.svc/SOAP" /> | ||
+ | <add key="UBIK.Service.HideAuthenticationInfo" value="0" /> | ||
+ | ... | ||
+ | </appSettings> | ||
+ | </source> | ||
+ | <li> If the authentication service is in a different location, open the [[Web Service Configuration|web.config]] of the USAM service:<br/> | ||
+ | * the settings in the configuration file are the same as in the data service | ||
+ | * however, the settings for the SessionManagementType and the SessionManagementUrl will be ignored | ||
+ | </li> | ||
+ | </ol> | ||
− | + | {{Attention|It is important that the authentication service connects to the same database as the data service!}} | |
− | + | ||
− | + | ||
− | + | ||
− | [[Category:How-To]] | + | == See also == |
− | [[Category: | + | * [[USAM]] |
+ | * [[USAM#Single_Local_Application|Single Local Application]] | ||
+ | * [[USAM#GAS_.28Global_Application_Service.29|Global Application Service]] | ||
+ | |||
+ | [[Category:How-To|Configure LAS Authentication]] | ||
+ | [[Category:Installing|Configure LAS Authentication]] | ||
+ | [[Category:Session management|Configure LAS Authentication]] |
Latest revision as of 12:19, 22 July 2015
Using the Local Application Service (LAS) authentication mode requires to configue the UBIK® Studio as well as the web service.
- Open UBIK® Studio and connect to the database which should be configured for LAS.
- Open database specific settings and set
Parameter | Value | Comment |
---|---|---|
SessionManagementType | 1 | 0 = Local Management, 1 = LAS, 2 = GAS |
SessionServiceUrl | https://SERVERNAME[:PORT]/UBIK/USAM.svc/SOAP?? | Address of the authentication service The port number PORT must be specified only if other than 443 (default for https). |
TokenValityPeriode | 300 | Duration (in seconds) every generated token is valid. The token expires after this timespan. |
HideAuthenticationInfo | 1 | This switch provides the possibility to turn off the detailed error information as necessary (due to security issues). |
- Open the web.config of the data service and set the session's management type and URL to the according address of the web service.
- If the authentication service is in a different location, open the web.config of the USAM service:
- the settings in the configuration file are the same as in the data service
- however, the settings for the SessionManagementType and the SessionManagementUrl will be ignored
<appSettings>
...
<add key="UBIK.Service.TokenValityPeriode" value="600" />
<add key="UBIK.Service.SessionManagementType" value="1" />
<add key="UBIK.Service.SessionManagementUrl" value="https://SERVERNAME[:PORT]/UBIK/USAM.svc/SOAP" />
<add key="UBIK.Service.HideAuthenticationInfo" value="0" />
...
</appSettings>
...
<add key="UBIK.Service.TokenValityPeriode" value="600" />
<add key="UBIK.Service.SessionManagementType" value="1" />
<add key="UBIK.Service.SessionManagementUrl" value="https://SERVERNAME[:PORT]/UBIK/USAM.svc/SOAP" />
<add key="UBIK.Service.HideAuthenticationInfo" value="0" />
...
</appSettings>