Stack Overflow
Stack Overflow

Questions tagged [picketlink]

PicketLink is an umbrella project for security and identity management for Java Applications. It is licensed under a friendly Apache v2 license. It supports Federation of authentication across a variety of schemes.

95 questions
2
votes
1 answer

Get the target Java method of a request in JAX-RS for authorization with Picketlink

I have a custom implementation of the Picketlink PathAuthorizer interface that checks if a URL is allowed for the user. public class BssPathAuthorizer implements PathAuthorizer { @Inject Identity identity; @Override public boolean…
Daniele Licitra
  • 1,520
  • 21
  • 45
2
votes
1 answer

PrimeFaces based application with PicketLink does not show style in login page

I developed a PrimeFaces based application that I now want to protect with PicketLink in a CDI way. I followed this example and created a login page with several PrimeFaces components including a layout). All styling and functionality is however…
Kukeltje
  • 12,223
  • 4
  • 24
  • 47
2
votes
1 answer

How to map SAML assertion attribute values onto roles in SP with PicketLink?

We're implementing a SAML2-Based SSO solution and use PicketLink on the SP side. On the IDP side we have a different implementation which is configured to output the multivalued memberOf attribute (these are actually LDAP/AD-group memberships. So we…
lexicore
  • 42,748
  • 17
  • 132
  • 221
2
votes
1 answer

@RolesAllowed doesn't work properly

I have to restrict the access of a method only to the users who have a certain role. The IdentityManager is built correctly. I have this controller class. @Named @RequestScoped @LoggedIn public class UserController{ @RolesAllowed({"tt"}) …
Luca G.
  • 86
  • 4
2
votes
1 answer

Enable SAML2 SSO on a multi-tenant JBoss Application to multiple IPs

I have an existing JBoss Application that I want to enable as a SAML2 SP. Easy enough, but this is a multi-tenant application where the host name is used to determine which IP "if any" to redirect to. If no IP is configured, it should fall through…
dsmith
  • 1,978
  • 10
  • 16
1
vote
0 answers

PicketLink at Service Provider Responding 302 in EAP 7.1 with SAML

Runtime: JBOSS EAP 7.1, EAP in-build picketLink and Chrome. JAR: We enabled SP Initiated Web SSO…
TechArchi
  • 31
  • 2
1
vote
0 answers

Post calls failing in SSO configuration with Wildfly 14.0.1 and PicketLink 2.5.5.SP12

I have SSO configuration enabled using PicketLink. It was working fine with Wildfly 10. But after upgrading to Wildfly 14, getting this error. When we try to login to our application, it gets redirected to IDP and after successful authentication, it…
Rajas
  • 11
  • 1
1
vote
0 answers

Keycloak auth for picketlink old app

I need some help from community! My old applications are running on Jboss 5 and 6, using Java with Hibernate and Struts or Seam. The application running on Jboss 6 are SPs of the IDP that is running on Jboss 5. The users and roles are inside a…
Ricardo Morais
  • 41
  • 1
  • 4
1
vote
1 answer

Bean name is ambiguous when adding a new dependency

I added this picketlink dependency in my pom file : org.picketlink picketlink 2.7.1.Final I am getting this error…
Purple Haze
  • 530
  • 7
  • 22
1
vote
1 answer

SAML authentication in Azure AD via Java struts web application

In one of the java struts based web projects, I have implemented SSO (Single-sign-on) using SAML authentication, using picketlink library, deployed on Jboss AS 7.1. Its working without any issues. I need to implement the SSO in another Struts based…
Anand
  • 727
  • 3
  • 14
  • 39
1
vote
0 answers

Java Security Apache Shiro vs Picketlink

I've got an Java EE application running with Apache Shiro to secure and authenticate to the website. However I want to implement Single Sign on with Picketlink. Is it possible to implement it "on top" or do I have to disable Shiro and do the whole…
0x45
  • 779
  • 3
  • 7
  • 26
1
vote
1 answer

Shiro and client certs

For my JSF/TomEE application, I have a NoSQL database with users and roles that specifies how users can access resources (basically, IDs in a url parameter) either read-only or write. I want to implement security and this post gave me some ideas but…
user1156544
  • 1,725
  • 2
  • 25
  • 51
1
vote
1 answer

Picketlink: finding users with given role

I configured a JPA store and see users and roles getting added correctly to the db when I call the related picketlink (2.7.1) API's My questions is this: how does one get a list of all users that have a given role? I tried doing this using the…
Mustafa
  • 5,624
  • 3
  • 24
  • 40
1
vote
0 answers

How to create picketlink identityquery with "NOT" conditions?

I want to query my identities and show it in a table with sorting, pagination and filtering options. It's all ok but i haven't found a way to introduce NOT conditions. In the code, the T variable is an org.picketlink.idm.model.IdentityType and…
Daniele Licitra
  • 1,520
  • 21
  • 45
1
vote
1 answer

PicketLink: 'ERROR: invalid byte sequence for encoding "UTF8": 0x00' when setting passwords

I have a Java EE app configured to use PicketLink as its security framework. The app is running on JBoss EAP 7 (or Wildfly 10), and is using PostgreSQL 9.4 as its backend datastore. I'm initializing the PicketLink IDM framework to use PBKDF2…
Shadowman
  • 11,150
  • 19
  • 100
  • 198
1
2
3 4 5 6 7