Versions Compared

Old Version 38

changes.mady.by.user Scott Amerson

Saved on

compared with

New Version 39

changes.mady.by.user Scott Amerson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The following are instructions for adding DistAuth login to Sakai 1.5, 2.0, 2.1.x (This is assuming one login page that is protected by DistAuth, version 1 below)

Sakai 2.1.x

1. Remove any prior versions of DistAuth jars located in shared/lib/ or common/lib.

2. Setup any Sakai usernames you would like to have the ability to login to the site.
(this step will soon be replaced by automated provisioning)

23. Login to Sakai as admin. Set your admin account password to a secure value, then proceed.

34. Update the admin realm to include the usernames who should have administrative rights when they login to the Sakai instance.
Click the Realms navigation link.
Click the /site/!admin realm.
Click the Grant Ability link.
Add any usernames in the provide ID box.
Save your changes to the Realm.
Click Done to commit your changes to the Sakai Realm.

45. Download the DistAuth filter and wrapper source from SVN: https://mware.ucdavis.edu/svn/ucdsakai/trunk/ucd-form-based-distauth

This DistAuth module contains filter and request wrapper combined, and is built by maven within Sakai.

56. Edit the sakai.properties file located in $CATALINA_HOME/sakai/sakai.properties by default.

Turn on the container.login behavior in sakai.properties. If you do not have a line add

container.login = true

67. Apply the patch for the login module in Sakai, downloading from SVN: https://mware.ucdavis.edu/svn/ucdsakai/trunk/login

...

<listener>
<listener-class>org.sakaiproject.util.ToolListener</listener-class>
</listener>
...
</webapp>

68. Build the ucd-form-based-distauth module
cd $SAKAI_DEV/ucd-form-based-distauth
maven sakai

79. Stop Tomcat
/etc/init.d/tomcat stop
or on Windows use the net command or the Services Control Panel

810. Rebuild Sakai and deploy to Tomcat
cd $SAKAI_DEV
maven bld dpl

911. Start Tomcat
/etc/init.d/tomcat start
or on Windows use the net command or the Services Control Panel

1012. Now test that when you visit your Sakai instance's URL and click the login link you are sent to the UC Davis DistAuth Page for authentication. Note that it is important to use the dotted quad IP Address of FQDN in your URL. This is required for DistAuth to function. Do not use localhost o the localhost IP Address to test this. Check access and/or error logs for further details of the test.

...