Added by Sebastian Gonzalez Oyuela, last edited by Sebastian Gonzalez Oyuela on Dec 17, 2009  (view change)

Labels:

Enter labels to add to this page:
Wait Image 
Looking for a label? Just start typing.

Introduction

This guide describes the procedure for installing the Atricore Identity Bus 1.0.0-m1 and JOSSO 1.8.2. Moreover, we'll show how to deploy a pre-built identity appliance for enabling a SAML2-based Identity Federation with one Identity Provider (IdP) and one Service Provider (SP).

Install Atricore Identity Bus 1.0.0-m1 binaries

Unpack the Atricore IDBus binary distribution onto the /opt folder 

$ tar zxvf distributions/atricore-idbus/target/atricore-idbus-1.0.0-m1.tar.gz -C /opt

Setup and Start the Atricore IDBus

$ cd /opt/atricore-idbus-1.0.0-m1/bin
$ ./atricore

Now, deploy the samples and restart

karaf@atricore:/> features:install atricore-examples

Identity Bus Startup

Wait until Atricore Examples components are running, you can use the osgi:list | grep Atricore command to verify components state.

Install JOSSO 1.8.2 binaries

Download JOSSO 1.8.2 r1573 or later binary distribution.

josso-1.8.2-r1573.zip
josso-1.8.2-r1573.tar.gz

Unpack the JOSSO 1.8.2 binary distribution onto the /opt folder 

$ tar zxvf distributions/josso/target/josso-1.8.2-r1573.tar.gz -C /opt

Setup Tomcat for leveraging Atricore Identity Bus based IdP

Install Apache Tomcat 6 onto the /opt/apache-tomcat-6.0.20 folder and install the corresponding agent and sample partner application from the JOSSO 1.8.2 console

$ /opt/josso_1.8.2-r1573/bin/josso-gsh 

josso>  agent install --target /opt/apache-tomcat-6.0.20 --platform tc60

and then deploy the sample partner application :

josso> samples install --target /opt/apache-tomcat-6.0.20_josso_1.8.2-1573 --platform tc60

Edit the $CATALINA_HOME/lib/josso-agent-config.xml in order to point to the Atricore IDBus sample identity appliance endpoints 

...
        <gatewayLoginUrl>http://localhost:8080/IDBUS/SPB-1/IDBUS/SSO/REDIR</gatewayLoginUrl>
        <gatewayLogoutUrl>http://localhost:8080/IDBUS/SPB-1/IDBUS/SLO/REDIR</gatewayLogoutUrl>

        <gatewayServiceLocator>
            <protocol:ws-service-locator
                 endpoint="localhost:8080"
                 identityManagerServicePath="IDBUS/SPB-1/JOSSO/SSOIdentityManager/SOAP"
                 identityProviderServicePath="IDBUS/SPB-1/JOSSO/SSOIdentityProvider/SOAP"
                 sessionManagerServicePath="IDBUS/SPB-1/JOSSO/SSOSessionManager/SOAP"
            />
        </gatewayServiceLocator>
...

Edit the $CATALINA_HOME/conf/server.xml in order to change the listening port from 8080 to 8181 :

...
 <Connector connectionTimeout="20000" port="8181" protocol="HTTP/1.1" redirectPort="8443"/>
...

Start Tomcat 

$ cd /opt/apache-tomcat-6.0.20/bin
$ ./catalina.sh run

Test

http://localhost:8181/partnerapp/protected

Credentials are user1/user1pwd, as usual.

Wait for components

Before accessing the console or the services, make sure that Atricore componentes are up and running! Take a look at the command below.

karaf@atricore> osgi:list | grep Atricore
[  43] [Resolved   ] [            ] [       ] [   60] Atricore IDBus :: Kernel : Web Console Branding (1.0.0.m1)
[  85] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Bundle : Java JSP Standard Tag Library v1.2.0 (1.0.0.m1)
[  89] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Bundle : Apache Tiles JSP v2_0_6 (1.0.0.m1)
[  96] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Bundle : Java JDO2 Api v2.3.0-eb (1.0.0.m1)
[ 107] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Bundle : Apache Derby Server v10.5.3.0_1 (1.0.0.m1)
[ 126] [Active     ] [            ] [Started] [   60] Atricore IDBus :: Kernel : Support (1.0.0.m1)
[ 127] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Kernel : SamlR2 Binding (1.0.0.m1)
[ 128] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Kernel : WS-Trust Binding (1.0.0.m1)
[ 129] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Kernel : Html Binding (1.0.0.m1)
[ 130] [Active     ] [            ] [Started] [   60] Atricore IDBus :: Kernel : Planning Engine (1.0.0.m1)
[ 131] [Active     ] [            ] [Started] [   60] Atricore IDBus :: Kernel : Main (1.0.0.m1)
[ 132] [Active     ] [Created     ] [       ] [   60] Atricore IDBus :: Kernel : Appliance Services (1.0.0.m1)
[ 133] [Active     ] [            ] [Started] [   60] Atricore IDBus :: Kernel : Web Connector (1.0.0.m1)
[ 134] [Active     ] [            ] [       ] [   60] Atricore IDBus :: IDOJO : DB Identity Store Component (1.0.0.m1)
[ 135] [Active     ] [            ] [       ] [   60] Atricore IDBus :: IDOJO : LDAP Identity Store Component (1.0.0.m1)
[ 136] [Active     ] [            ] [       ] [   60] Atricore IDBus :: IDOJO : Memory Identity Store Component (1.0.0.m1)
[ 137] [Active     ] [            ] [       ] [   60] Atricore IDBus :: IDOJO : Memory Session Store Component (1.0.0.m1)
[ 138] [Active     ] [            ] [       ] [   60] Atricore IDBus :: IDOJO : Serialized Session Store Component (1.0.0.m1)
[ 139] [Active     ] [            ] [Started] [   60] Atricore IDBus :: Capability : SAML R2 Main Component (1.0.0.m1)
[ 140] [Active     ] [Created     ] [       ] [   60] Atricore IDBus :: Capability : SAML R2 Capability Support (1.0.0.m1)
[ 141] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Bundle : josso-ws-v1_2 (1.0.0.m1)
[ 142] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Capability : JOSSO Main Component (1.0.0.m1)
[ 143] [Active     ] [            ] [       ] [   60] Atricore IDBus :: Application : Server UI Web distribution (1.0.0.m1)