README.txt for ssoInfo Demo
==============================


I. Introduction
===============

This demo illustrates the following features of JAZN-LDAP:

- integration with Oid for retrievals of users and groups from the default subscriber
- integration of OC4J Web Container with Web Single-sign on 
- dynamic SSO authentication 

Please refer $ORACLE_HOME/j2ee/home/jazn/config/README.txt for general
configuration instructions for JAZN.


II. Assumption
==============

1) This demo assumes that the OID server instance for SSO server and JAZN-LDAP is the same.
2) The demo assumes that the OID server is installed with default subscriber setup.


II. Configuration
=================

Please consult JAZN Configuration Guide for general steps involved
in configuring J2EE applications with JAZN:


A. Build ssoInfo.ear
-------------------
1) Optional: Update ssoInfo/etc/orion-application.xml: specify your oid server location if it is not specified in jazn.xml (default locaton at j2ee/home/config).
For example, 

<jazn provider="LDAP" default-realm="<default_subscriber>" location="ldap://oid.us.oracle.com:389" />

2) Once you've Ant installed, simply type the following at 
the command line (assuming you're in jazn/demo/ssoInfo directory)

> ant

a new directory ("build") will be created and the .EAR and .WAR files
for ssoInfo will be created there.

B. OC4J
-------

To deploy ssoInfo into OC4J, you need to build the demo first.
Then deploy it using dcmctl.  Refers to $ORACLE_HOME/dcm/README for reference.

e.g. $ORACLE_HOME/dcm/bin/dcmctl deployApplication -verbose -file $ORACLE_HOME/j2ee/home/jazn/demo/ssoInfo/build/ssoInfo.ear -application ssoInfo -component home -t 240 

Alternatively, do the following 2 tasks:
1) $ORACLE_HOME/j2ee/home/config/server.xml:

Add this line:

	<application name="ssoInfo" path="../jazn/demo/ssoInfo/build/ssoInfo.ear" />


2) $ORACLE_HOME/j2ee/home/config/default-web-site.xml (AJP + Apache):

Add this line:

	<web-app application="ssoInfo" name="ssoInfo-web" root="/ssoInfo" />

C. Load Data into OID
---------------------

The user and role data for the default subscriber has to be loaded into the OID. This is done by running the class oracle.security.jazn.util.LoadOidData which is present in the archive jazn.jar.
The syntax for running this class is

java -classpath $J2EE_HOME/jazn.jar:$ORACLE_HOME/jlib/ldapjclnt9.jar: oracle.security.jazn.util.LoadOidData [-h ldaphost] [-p ldapport] [-D binddn] [-w passwd] [-f path_to_oidSubDemoDataCreateJAZN.sbs]

The oidSubDemoDataCreateJAZN.sbs file is available at the directory $J2EE_HOME/jazn/install.
If the default subscriber is changed then the class LoadOidData has to be re-run in order to load the demo data to the new default subscriber.


D.  Configuring & Running JAZN with SSO
===============================================

We currently only support use of JAZN-LDAP with SSO.

Apache/mod_osso 
---------------


Please refers to the "Oracle9iAS Single Sign-On Administrator's Guide" for details.
For trying out ssoInfo demo, there should be no additional configurations needed for 
mod_osso component.


Apache/mod_oc4j 
---------------

2) Add redirection info for ssoInfo to mod_oc4j.conf

Oc4jMount /ssoInfo/* 
Oc4jMount /ssoInfo   




III. Running the demo
=====================

Assuming you've all the components properly configured (Whew!), you may launch 
JAZN-enabled OC4J Server in this manner:

(This example assumes you are in directory $ORACLE_HOME/j2ee/home)

> $(JAVA_HOME)/bin/java -jar oc4j.jar



After OC4J is successfully launched, you may use your favorite
browser to point to the Apache (where mod_osso/mod_ojk reside)
listener, if you had previously configured Apache and SSO properly:

http://myapache.us.oracle.com:7778/ssoInfo

When redirected to SSO, you may enter the credentials to login.



Appendix A: Building Instructions
=================================

Make sure you've installed Ant from Apache's Jakarta Project
(http://jakarta.apache.org/ant/index.html). Ant is a XML-based
build tool (similar to make).




