Documentation Home
> Sun Java System Access Manager 7 2005Q4 Developer's Guide
Sun Java System Access Manager 7 2005Q4 Developer's Guide
Book Information
Index
A
C
D
I
J
L
N
P
R
S
T
U
W
Preface
Chapter 1 Using the Client SDK
How the Client SDK Works
JDK and CLASSPATH Requirements
Installing the Client SDK
To Install the Client SDK
To Configure the Client SDK
To Deploy amclientwebapps.war
Initializing the Client SDK
Using a Properties File
To Set ClientSDK Properties in a Properties File
Using the Java API
Setting Individual Properties
Naming URL Properties
Debug Properties
Notification URL Properties
Setting Up a Client Identity
To Set Username and Password Properties
To Set an SSO Token Provider
Building Custom Web Applications
Building Stand-Alone Applications
To Build a Stand-Alone Application
Targets Defined in clientsdk
About the Client SDK Samples
Chapter 2 Customizing the Administration Console
About the Administration Console
Generating The Console Interface
Plug-In Modules
Accessing the Console
Customizing The Console
The Default Console Files
Creating Custom Organization Files
To Create Custom Organization Files
Alternate Customization Procedure
Miscellaneous Customizations
To Modify The Service Configuration Display
To Modify The User Profile View
Display Options For The User Profile Page
To Localize The Console
To Display Service Attributes
To Customize Interface Colors
To Change The Default Attribute Display Elements
To Add A Module Tab
To Display Container Objects
Console APIs
To Create a Console Event Listener
Precompiling the Console JSP
Console Samples
Modify User Profile Page
Create A Tabbed Identity Management Display
ConsoleEventListener
Add Administrative Function
Add A New Module Tab
Create A Custom User Profile View
Chapter 3 Using Session Service APIs
About the Single Sign-On Java APIs
Using the SSO Code Samples
Running SSO Code Samples on Solaris
To Run a Sample Program from the Access Manager Server
To Run a Sample Program on a Remote Client
To Run the Sample Code
To Run a Sample Program on the Remote Client Command Line
To Test the Command Line
Developing Non-Web Based Applications
Chapter 4 Customizing the Authentication User Interface
User Interface Files You Can Modify
Staging Area for Files to be Customized
Java Server Pages
Customizing the Login Page
Customizing JSP Templates
XML Files
Callbacks Element
Nested Elements
Attributes
ConfirmationCallback Element
Nested Element
JavaScript Files
Cascading Style Sheets
Images
Localization Files
Customizing Branding and Functionality
To Modify Branding and Functionality
Customizing the Self-Registration Page
To Modify the Self-Registration Page
Updating and Redeploying services.war
To Update services.war
To Redeploy services.war
On BEA WebLogic
On Sun ONE Application Server
On IBM WebSphere
Customizing the Distributed Authentication User Interface
To Customize the Distributed Authentication User Interface
Chapter 5 Using Authentication APIs and SPIs
Overview of Authentication APIs and SPIs
How the Authentication Java APIs Work
XML/HTTP Interface for Other Applications
Examples of XML Messages
How the Authentication SPIs Work
Extending the AMLoginModule Class
Pluggable JAAS Module
Authentication Post Processing
onLoginSuccess
onLoginFailure
onLogout
Using Authentication APIs
Running the Sample Authentication Programs
Java API Code Samples and Their Locations
To Compile and Execute the Java API Samples
To Configure SSL for Java API Samples
LDAPLogin Example
CertLogin Example
To Run the CertLogin Program
Using certutil for Client Certificate Management
JCDI Module Example
Using Authentication SPIs
Implementing a Custom Authentication Module
About the Login Module Sample
Writing a Sample Login Module
To Write a Sample Login Module
Creating a Module Properties File
Writing the Principal Class
Implementing the LoginModule Interface
Compiling and Deploying the LoginModule program
To compile the Login Module
To Deploy the Login Module Sample Program
To Redeploy the amserver.war File
Loading the Login Module Sample into Access Manager
To Load the Login Module Using the Administration Console
To Load the Login Module Using the Command Line
Running the LoginModule Sample Program
To Run the LoginModule on Solaris
To Run the Login Module on Windows 2000
To Deploy the Login Module
Implementing Authentication PostProcessing SPI
About the PostProcessing SPI Sample
To Compile the ISAuthPostProcessSample Program on Solaris Sparc/x86 or Linux
To Deploy the ISAuthPostProcess Sample Program
Configuring the Authentication Post Processing SPI
To Configure ISAuthPostProcess Sample for an Organization
To Configure the ISAuthPostProcess Sample for a Service
To Configure ISAuthPostProcess Sample for a Role
Compiling On Windows 2000
To Deploy the ISAuthPostProcessSample Program
To Configure Authentication Post Processing SPI
Generating an Authentication User ID
To Compile the UserIDGeneratorSample on Solaris Sparc/x86, Linux
To Deploy the UserIDGeneratorSample Program
Configuring the UserIDGeneratorSample Program
To Configure UserIDGeneratorSample for an Organization
To Access an Authentication Module for an Organization
Compiling the UserIDGeneratorSample Program on Windows 2000
To deploy the UserIDGeneratorSample Program
To Configure the UserIDGeneratorSample Program
Implementing A Pure JAAS Module
Conventions Used in the Samples
To Run the Sample on Solaris Sparc x86 or Linux:
To Enable SSL
To Run the Sample on Windows 2000
To Enable SSL
Chapter 6 Using the Policy APIs
About the Policy APIs
Policy Java Packages
Policy Management Classes
PolicyManager
Policy
Policy Evaluation Classes
PolicyEvaluator Class
ProxyPolicyEvaluator Class
Client PolicyEvaluator Class
PolicyEvent Class
Policy Plug-In APIs
Using the Policy Code Samples
Use Cases Illustrated by Policy Code Samples
To Run a Policy Evaluation Program for the URL Policy Agent Service
To Run a Policy Evaluation Program for the URL Policy Agent Service and More
To Run a Policy Evaluation Program for the Sample Service
To Run a Policy Evaluation Program for the Sample Service and More
To Use amadmin to Create Policies for the URL Policy Agent Service
To Use amadmin to Create Policies for the Sample Service
To Programmatically Construct Policies
Compiling the Policy Code Samples
To Compile the Policy Code Samples
Adding a Policy-Enabled Service to Access Manager
To Add a New Service to Access Manager
Developing Custom Subjects, Conditions, and Referrals
To Add Sample Implementation to the Policy Framework
Creating Policies for a New Service
To Load a Policy XML File
Developing and Running a Policy Evaluation Program
To Set Policy Evaluation Properties
To Run a Policy Evaluation Program
Programmatically Constructing Policies
To Run the Sample Program PolicyCreator.java
Chapter 7 Using the JAAS Authorization Framework
Overview of JAAS Authorization
How Policy Enforcement Works
How the JS2E Access Controller Works
JAAS Authorization in Access Manager
Custom APIs
User Interface
Enabling the JAAS Authorization Framework
Chapter 8 Writing Log Operations
About the Logging Samples
Writing LogRecords To A Log File or Table
Reading LogRecords From A Log File or Table
Compiling Logging Programs
Executing Logging Programs
Implementing a Remote Logging Application in a Container
Setting Environment Variables
If Client Can Execute in the Local Access Manager Server
If Client Executes Only in a Remote Server
If SSL is Enabled
Logging to a Second Access Manager Server
Using the Logging Sample Files
To Run the Sample Programs on Solaris
To Run the Sample Programs on Windows 2000
Using the Logging SPIs
Log Verifier Plug-In
To Customize Actions to be Taken in Secure Logging
Log Authorization Plug-In
To Implement a Log Authorization Plug-In
To Instantiate a PolicyEvaluator
Chapter 9 Using the C APIs
About the C Library for Authentication
C Sample Code for Authentication
About the C Library For Policy
Policy Implementation
Policy Evaluation
About the C Library for Single Sign-On
C SSO Include Files
C SSO Properties
C SSO Interfaces
Initialization and Cleanup
Get, Validate, Refresh And Destroy SSO Token
Get Session Information Interfaces
Get And Set Property Interfaces
Listener And Notify Interfaces
Non-Web-Based Applications
Using the C API Code Samples
To Build a Sample Program on UNIX platforms
To Build a Sample Program on the Windows Platform
Executing the Sample Programs
Platform Information
To Execute a Sample Program on the Solaris Platform
To Execute a Sample Program on the Linux Platform
To Execute a Sample Program on the Windows Platform
To Execute am_policy_test
To Execute am_auth_test
To Execute the am_sso_test Program
am_log_test
apache_agent.c
Chapter 10 Client Detection Service
Overview
Client Detection Process
Enabling Client Detection
Client Data
HTML
genericHTML
Client Detection APIs
Chapter 11 Access Manager Utilities
Utility APIs
AdminUtils
AMClientDetector
AMPasswordUtil
Debug
Locale
SystemProperties
ThreadPool
Password API Plug-Ins
Notify Password Sample
Password Generator Sample
Chapter 12 Updating and Redeploying Access Manager WAR Files
WAR Files in J2EE Software Development
Web Components
How Web Components are Packaged
About Access Manager WARs
console.war
Files You Can Modify
Files You Must Not Modify
password.war
Files You Can Modify
Files You Must Not Modify
services.war
Files You Can Modify
Files You Must Not Modify
Updating Modified WARs
To Update a Modified .war File
Redeploying Modified Access Manager WARs
To Redeploy a WAR On Sun Java System Web Server 6.1
To Redeploy a WAR On BEA WebLogic Server 6.1
To Redeploy a WAR on Sun Java System Application Server 7.0
Redeploying an Access Manager WAR on IBM WebSphere Application Server
Chapter 13 Notification Service
Overview
Enabling The Notification Service
To Receive Session Notifications
© 2010, Oracle Corporation and/or its affiliates