test

Deployment Example: SAML v2 Using Sun OpenSSO Enterprise 8.0

14.3 Testing Attribute Mapping

This test uses snoop.jsp to display the HTTP headers being passed in a browser window. Within the headers you see the attributes being passed to the service provider protected by the agent.

ProcedureTo Verify That Attribute Mapping is Working Properly

  1. Log into the pr1.sp-example.com host machine as the root user.

  2. Copy snoop.jsp to the /opt/SUNWwbsvr/https-pr1.sp-example.com/docs directory.

    snoop.jsp is in Appendix F, The snoop.jsp File.

  3. Access http://pr1.sp-example.com:1080/snoop.jsp from a web browser.

    The Web Policy Agent redirects the request to the OpenSSO Enterprise console on the identity provider side.

  4. Log in to the OpenSSO Enterprise console as the test user.

    Username

    jsmith@jsmith.com

    Password

    jsmith

    JSP Snoop page is the header from the HTTP request in the browser. Note the following:

    • John Smith's telephone number and email address are included.

    • The Remote user is anonymous and serves as confirmation of the transient user previously configured.


    JSP Snoop page
Request information
Requested URL: http://pr1.sp-example.com:1080/snoop.jsp
Request method: GET
Request URI: /snoop.jsp
Request protocol: HTTP/1.1
Servlet path: /snoop.jsp
Path info: null
Path translated: null
Query string: null
Content length: -1
Content type: null
Server name: pr1.sp-example.com
Server port: 1080
Remote user: anonymous
Remote address: 192.18.120.83
Remote host: 192.18.120.83
Authorization scheme: DSAME
Request headers
Header: Value:
cookie  JSESSIONID=A7092AD436027D5B18DFCC8C65D7B580; 
  iPlanetDirectoryPro=AQIC5wM2LY4SfcxahJE41EKzHCTvKn
  lulj6F8sTjtxvBpA8=@AAJTSQACMDMAAlMxAAIwMQ==#; amlbcookie=01
host 	pr1.sp-example.com:1080
user-agent 	Mozilla/5.0 (X11; U; SunOS sun4u; en-US; 
rv:1.8.1.15) Gecko/20080703 Firefox/2.0.0.15
accept 	text/xml,application/xml,application/xhtml+xml,
text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
accept-language 	en-us,en;q=0.5
accept-encoding 	gzip,deflate
accept-charset 	ISO-8859-1,utf-8;q=0.7,*;q=0.7
keep-alive 	300
connection 	keep-alive
emailaddress 	jsmith@jsmith.com
telephone 	408-555-5454
Init parameters
Parameter: 	Value:
fork 	false
mappedfile 	false
logVerbosityLevel 	warning
com.sun.appserv.jsp.classpath 	/opt/SUNWwbsvr/lib/webserv-rt.jar:
  /opt/SUNWwbsvr/lib/pwc.jar:/opt/SUNWwbsvr/lib/ant.jar:
  /opt/SUNWwbsvr/jdk/lib/tools.jar:/opt/SUNWwbsvr/lib/ktsearch.jar:
  /opt/SUNWwbsvr/lib/webserv-jstl.jar:/opt/SUNWwbsvr/lib/jsf-impl.jar:
  /opt/SUNWwbsvr/lib/jsf-api.jar:/opt/SUNWwbsvr/lib/webserv-jwsdp.jar:
  /opt/SUNWwbsvr/lib/container-auth.jar:/opt/SUNWwbsvr/lib/mail.jar:
  /opt/SUNWwbsvr/lib/activation.jar:
httpMethods 	GET,HEAD,POST