Sending Notifications to the Client SDK Cache

Notifications enable the synchronization of the Client SDK cache and the OpenSSO Enterprise server. You can use the Notification Service to send session notifications to web containers that are running the OpenSSO Enterprise Client SDK, enabling real-time updates on the client side. No client application changes are required to support session notifications. The notifications can be received only if the Client SDK is installed on a web container. See Properties in AMConfig.properties for information on the notification properties.

To Enable Client SDK Cache Notifications

Before You Begin

Copy the encryption value of am.encryption.pwd from the OpenSSO Enterprise server to the remote Client SDK. The value of am.encryption.pwd is used for encrypting and decrypting passwords.

To access the am.encryption.pwd, in OpenSSO Enterprise administration console, click Configuration > Servers and Sites > serverName > Security.

1. Install OpenSSO Enterprise on Host 1.

2. Install Sun Java System Web Server on Host 2.

3. Install the ClientSDK on the same machine as the Web Server.

4. Log in to OpenSSO Enterprise as amadmin.

   http://OpenSSO-HostName:8080/opensso

5. Execute the servlet by entering http:// ClientSDK_host:8080/servlet/SSOTokenSampleServlet into the browser location field and validating the SSOToken.

   SSOTokenSampleServlet is used for validating a session token and adding a listener. Executing the servlet will print out the following message:

   SSOToken host name: 192.18.149.33 SSOToken Principal name: uid=amAdmin,ou=People,dc=red,dc=iplanet,dc=com Authentication type used: LDAP IPAddress of the host: 192.18.149.33 The token id is AQIC5wM2LY4SfcyURnObg7vEgdkb+32T43+RZN30Req/BGE= Property: Company is - Sun Microsystems Property: Country is - USA SSO Token Validation test Succeeded

6. Set the property com.iplanet.am.notification.url= in the machine where the Client SDK is installed:

   com.iplanet.am.notification.url=http://clientSDK_host.domain:port /servlet com.iplanet.services.comm.client.PLLNotificationServlet

   The notification URL is where the OpenSSO server can send change notifications to the clients. This works for web application and standalone applications that can listen on port for HTTP(s) traffic.

7. Restart the Web Server.

8. Login into OpenSSO Enterprise as amadmin.

   http://OpenSSO-HostName:8080/opensso

9. Execute the servlet by entering http:// ClientSDK_host:8080/servlet/SSOTokenSampleServlet into the browser location field and validating the SSOToken again.

   When the machine on which the Client SDK is running receives the notification, it will call the respective listener when the session state is changed. The notifications can be received only if the Client SDK is installed on a web container.