|
By Jim Faut, with contributions from Rick Palkovic, March 2009
|
|
|
[Part 1] [Part
2] [Part
3] [Part 4] [Part 5]
OpenSSO deployments can be complex and can involve many different components that must be configured correctly in order to function. This article shows how to analyze and troubleshoot OpenSSO deployments with the popular Mozilla Firefox web browser.
For convenience, the article is divided into Part 1, the introduction and configuration description you are reading now, and succeeding parts with examples of OpenSSO deployments, listed in the Exploring Examples section.
Contents
This article assumes that you have already configured an OpenSSO deployment, and that you have used the default OpenSSO configuration. The article also assumes that you have configured a policy agent on a web server to demonstrate the way it interacts with the OpenSSO server. The configuration values are listed below. See the References section for more information about OpenSSO and Policy Agent Host.
OpenSSO Server
Host Name: osso.customer.com
OpenSSO Software: OpenSSO Enterprise 8.0
Web Container: Glassfish v2 u2
OpenSSO URL: http://osso.customer.com:8080/opensso
Policy Agent Host
Host Name: agent.customer.com
OpenSSO Software: Policy Agent 3 for SJS Web Server 7
Web Container: SJS Web Server 7
URL: http://agent.customer.com/
This article demonstrates two popular Firefox browser add-ons that facilitate troubleshooting of a typical OpenSSO deployment. Specifically:
- The Live HTTP Headers add-on – To inspect the HTTP Request and Response activity.
- The HackBar add-on – To further analyze data from the HTTP Request and Response as revealed by the Live HTTP Headers add-on.
You can download the Firefox browser from the Mozilla website. The Firefox browser, the two add-ons for the examples, and the configuration and verification of the add-ons are discussed in this section. See the References section for summary links to the Firefox browser and the add-ons.
The examples for this article were developed with Firefox 3.0.6. Firefox 2.x works similarly.
To work through the examples, you need to download and install the following two Firefox add-ons:
Note to Mac OS X users: The current release of HackBar contains a bug that was fixed in the 1.4.1 version of HackBar. Download and install HackBar 1.4.1.
Configure the Live HTTP Headers add-on before you use it for the first time, and verify the HackBar installation.
To configure Live HTTP Headers:
- In the Firefox menu bar, choose Tools > Live HTTP Headers. The Live HTTP Headers window opens.
- Click the Config tab and set configuration options as shown in Figure 1.
Figure 1: Setting Configuration Options |
To verify the HackBar installation:
- In the Firefox menu bar, choose Tools > Show/hide hackbar. If the add-on is installed correctly, the HackBar pane opens in the browser, as shown in Figure 2.
Figure 2: Verifying HackBar Installation |
When it comes to web single sign-on, more happens than meets the eye. Many interactions occur among the user's browser, the policy agent, and the OpenSSO server. These interactions happen so fast that the user never really perceives them. However, understanding these interactions and the content they exchange is critical to troubleshooting a typical SSO deployment. Using the Live HTTP Headers and HackBar Firefox add-ons, you can gain insight into these interactions and better understand how the system works.
With software installed and configured, you are ready to explore examples. Examples will be added to the series as they become available.
Do you have comments about this article? We welcome your participation in our community. Please keep your comments civil and on point. You may optionally provide your email address to be notified of replies - your information is not used for any other purpose. By submitting a comment, you agree to these Terms of Use.
|
 Jim Faut, a Technical Manager in Sun Federal's Professional Services group, specializes in OpenSSO, GlassFish, Identity Manager, and Portal deployments. He has been deploying solutions with Java technology since 1999. Jim's blog focuses on Sun software products and related technologies. |
 Rick Palkovic is a staff writer for Sun Developer Network. He has written about the Solaris OS and Java technologies for longer than he likes to admit, composing everything from man pages to technical white papers.
|
|
Print-friendly Version
