[prev in list] [next in list] [prev in thread] [next in thread]
List: axis-user
Subject: AW: [Axis2] Axis2 with Secure SharePoint 2013 (ADFS / FedAuth cookie)
From: Stadelmann Josef <josef.stadelmann () axa-winterthur ! ch>
Date: 2014-02-03 11:31:40
Message-ID: DB774472C2709D43B623B28A47252E2222273B82 () wwfemr01 ! chres1 ! doleni ! net
[Download RAW message or body]
[Attachment #2 (text/plain)]
Dear Bjoern
Could you solfe your problem?
If not – I do not have the wonder solution.
But as a share point server is a Microsoft type server
it could help to first do the same using a Microsoft sw approach then study the \
protocol used and then implement the axis2 client if any toward this share point \
server.
Josef
Von: bjoern@bittins.de [mailto:bjoern@bittins.de]
Gesendet: Montag, 25. November 2013 12:05
An: Yashwanth Rajaram -X (yrajaram - ZENSAR TECHNOLOGIES INC at Cisco); \
java-user@axis.apache.org
Betreff: RE: [Axis2] Axis2 with Secure SharePoint 2013 (ADFS / FedAuth cookie)
Dear Yshwanth.
Thanks for your immediate reply. I also found this site during my research. The \
backend is currently able to authenticate via NTLM directly against the target \
SharePoint system. Unfortunately with the new SharePoint target system, we cannot \
authenticate directly. We have to authenticate against a dedicated federation server \
to get a FedAuth cookie, pass this on to the stubs for communication/authentication \
with the target SharePoint. And I really struggle getting this cookie and passing it \
on. I guess I have to use the HttpClient with NTLM support to get the FedAuth cookie \
but I have no clue how to extract the cookie from there and provide it, for example, \
to a Lists stub that is used to communicate with the SharePoint. Has anybody already \
tried to connect to a SharePoint share that uses authentication via \
federation/FedAuth cookie?
Best regards
Bjoern
"Yashwanth Rajaram -X (yrajaram - ZENSAR TECHNOLOGIES INC at Cisco)" \
<yrajaram@cisco.com<mailto:yrajaram@cisco.com>> hat am 21. November 2013 um 21:15 \
geschrieben: Bjoern,
I have not used NTLM but I do see this documentation on Apache Axis website: \
http://axis.apache.org/axis2/java/core/docs/http-transport.html#preemptive_auth Hope \
it is what you need…
Sincerely, Yashwanth
Technical Architect, EBIS
From: bjoern@bittins.de<mailto:bjoern@bittins.de> [mailto:bjoern@bittins.de]
Sent: Thursday, November 21, 2013 1:50 AM
To: java-user@axis.apache.org<mailto:java-user@axis.apache.org>
Subject: [Axis2] Axis2 with Secure SharePoint 2013 (ADFS / FedAuth cookie)
Hi@all!
I'm very new to Axis2 and hope to get some help on this mailing list. Currently I \
have to maintain a Java backend component which connects to SharePoint systems using \
Axis2. The latest task is to connect to a SharePoint 2013 which uses ADFS (a FedAuth \
cookie) to authenticate users. This FedAuth cookie is obtained from an identity \
provider which uses (as far as I know) NTLM for authentication. Could anyone give me \
a hint of how to obtain that FedAuth cookie and use it with the SharePoint stub \
objects (Lists, Webs, Copy) created with Axis2. If you need any further information I \
will try to provide these as soon as possible. Thanks!
Best regards
Bjoern
[Attachment #3 (text/html)]
<html xmlns:v="urn:schemas-microsoft-com:vml" \
xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" \
xmlns="http://www.w3.org/TR/REC-html40"> <head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 12 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:"Trebuchet MS";
panose-1:2 11 6 3 2 2 2 2 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
{mso-style-priority:99;
mso-style-link:"Sprechblasentext Zchn";
margin:0cm;
margin-bottom:.0001pt;
font-size:8.0pt;
font-family:"Tahoma","sans-serif";}
p.mceresizehandle, li.mceresizehandle, div.mceresizehandle
{mso-style-name:mceresizehandle;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
background:white;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.pktadded, li.pktadded, div.pktadded
{mso-style-name:pktadded;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.msochpdefault, li.msochpdefault, div.msochpdefault
{mso-style-name:msochpdefault;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:10.0pt;
font-family:"Times New Roman","serif";}
span.emailstyle20
{mso-style-name:emailstyle20;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.SprechblasentextZchn
{mso-style-name:"Sprechblasentext Zchn";
mso-style-priority:99;
mso-style-link:Sprechblasentext;
font-family:"Tahoma","sans-serif";}
span.E-MailFormatvorlage25
{mso-style-type:personal-reply;
font-family:"Arial","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:70.85pt 70.85pt 2.0cm 70.85pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="DE-CH" link="blue" vlink="purple">
<div class="WordSection1">
<p class="MsoNormal"><span \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D">Dear \
Bjoern<o:p></o:p></span></p> <p class="MsoNormal"><span \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-GB" \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D">Could \
you solfe your problem?<o:p></o:p></span></p> <p class="MsoNormal"><span lang="EN-GB" \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D">If \
not – I do not have the wonder solution.<o:p></o:p></span></p> <p \
class="MsoNormal"><span lang="EN-GB" \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D">But \
as a share point server is a Microsoft type server<o:p></o:p></span></p> <p \
class="MsoNormal"><span lang="EN-GB" \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D">it \
could help to first do the same using a Microsoft sw approach then study the protocol \
used and then implement the axis2 client if any toward this share point \
server.<o:p></o:p></span></p> <p class="MsoNormal"><span lang="EN-GB" \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-GB" \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D">Josef<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-GB" \
style="font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal" style="margin-left:35.4pt"><b><span lang="DE" \
style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">Von:</span></b><span \
lang="DE" style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> \
bjoern@bittins.de [mailto:bjoern@bittins.de] <br>
<b>Gesendet:</b> Montag, 25. November 2013 12:05<br>
<b>An:</b> Yashwanth Rajaram -X (yrajaram - ZENSAR TECHNOLOGIES INC at Cisco); \
java-user@axis.apache.org<br> <b>Betreff:</b> RE: [Axis2] Axis2 with Secure \
SharePoint 2013 (ADFS / FedAuth cookie)<o:p></o:p></span></p> </div>
</div>
<p class="MsoNormal" style="margin-left:35.4pt"><o:p> </o:p></p>
<div>
<p class="MsoNormal" style="margin-left:35.4pt">Dear Yshwanth. <o:p></o:p></p>
</div>
<div>
<p class="MsoNormal" style="margin-left:35.4pt"> <o:p></o:p></p>
</div>
<div>
<p class="MsoNormal" style="margin-left:35.4pt">Thanks for your immediate reply. I \
also found this site during my research. The backend is currently able to \
authenticate via NTLM directly against the target SharePoint system. Unfortunately \
with the new SharePoint target system, we cannot authenticate directly. We have to \
authenticate against a dedicated federation server to get a FedAuth cookie, pass this \
on to the stubs for communication/authentication with the target SharePoint. \
<o:p></o:p></p> </div>
<div>
<p class="MsoNormal" style="margin-left:35.4pt">And I really struggle getting this \
cookie and passing it on. I guess I have to use the HttpClient with NTLM support to \
get the FedAuth cookie but I have no clue how to extract the cookie from there and \
provide it, for example, to a Lists stub that is used to communicate with the \
SharePoint. Has anybody already tried to connect to a SharePoint share that uses \
authentication via federation/FedAuth cookie? <o:p></o:p></p>
</div>
<div>
<p class="MsoNormal" style="margin-left:35.4pt"> <o:p></o:p></p>
</div>
<div>
<p class="MsoNormal" style="margin-left:35.4pt">Best regards <o:p></o:p></p>
</div>
<div>
<p class="MsoNormal" style="margin-left:35.4pt">Bjoern <o:p></o:p></p>
</div>
<blockquote style="border:none;border-left:solid blue 1.0pt;padding:0cm 0cm 0cm \
8.0pt;margin-left:0cm;margin-top:5.0pt;margin-bottom:5.0pt"> <p class="MsoNormal" \
style="mso-margin-top-alt:0cm;margin-right:0cm;margin-bottom:12.0pt;margin-left:35.4pt">
"Yashwanth Rajaram -X (yrajaram - ZENSAR TECHNOLOGIES INC at Cisco)" \
<<a href="mailto:yrajaram@cisco.com">yrajaram@cisco.com</a>> hat am 21. \
November 2013 um 21:15 geschrieben: <o:p></o:p></p>
<div>
<p class="MsoNormal" style="margin-left:35.4pt"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D">Bjoern,</span><o:p></o:p></p>
<p class="MsoNormal" style="margin-left:35.4pt"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D"> </span><o:p></o:p></p>
<p class="MsoNormal" style="margin-left:35.4pt"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D">I \
have not used NTLM but I do see this documentation on Apache Axis website: </span><a \
href="http://axis.apache.org/axis2/java/core/docs/http-transport.html#preemptive_auth" \
>http://axis.apache.org/axis2/java/core/docs/http-transport.html#preemptive_auth</a><o:p></o:p></p>
>
<p class="MsoNormal" style="margin-left:35.4pt"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D">Hope \
it is what you need…</span><o:p></o:p></p> <p class="MsoNormal" \
style="margin-left:35.4pt"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D"> </span><o:p></o:p></p>
<div>
<p class="MsoNormal" style="margin-left:35.4pt"><span \
style="font-size:10.0pt;font-family:"Trebuchet \
MS","sans-serif";color:#C00000">Sincerely, \
Yashwanth</span><o:p></o:p></p> <p class="MsoNormal" style="margin-left:35.4pt"><span \
style="font-size:10.0pt;font-family:"Trebuchet \
MS","sans-serif";color:#C00000">Technical Architect, \
EBIS</span><o:p></o:p></p> </div>
<p class="MsoNormal" style="margin-left:35.4pt"><span \
style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D"> </span><o:p></o:p></p>
<div>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal" style="margin-left:35.4pt"><strong><span \
style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></strong><span \
style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> <a \
href="mailto:bjoern@bittins.de">bjoern@bittins.de</a> [<a \
href="mailto:bjoern@bittins.de">mailto:bjoern@bittins.de</a>] <br>
<strong><span style="font-family:"Tahoma","sans-serif"">Sent:</span></strong> \
Thursday, November 21, 2013 1:50 AM<br> <strong><span \
style="font-family:"Tahoma","sans-serif"">To:</span></strong> <a \
href="mailto:java-user@axis.apache.org"> java-user@axis.apache.org</a><br>
<strong><span style="font-family:"Tahoma","sans-serif"">Subject:</span></strong> \
[Axis2] Axis2 with Secure SharePoint 2013 (ADFS / FedAuth \
cookie)</span><o:p></o:p></p> </div>
</div>
<p class="MsoNormal" style="margin-left:35.4pt"> <o:p></o:p></p>
<div>
<p style="margin-left:35.4pt">Hi@all!<br>
<br>
I'm very new to Axis2 and hope to get some help on this mailing list. Currently I \
have to maintain a Java backend component which connects to SharePoint systems using \
Axis2. The latest task is to connect to a SharePoint 2013 which uses ADFS (a FedAuth \
cookie) to authenticate users. This FedAuth cookie is obtained from an identity \
provider which uses (as far as I know) NTLM for authentication. Could anyone give me \
a hint of how to obtain that FedAuth cookie and use it with the SharePoint stub \
objects (Lists, Webs, Copy) created with Axis2. If you need any further information \
I will try to provide these as soon as possible. Thanks!<o:p></o:p></p> <p \
style="margin-left:35.4pt">Best regards<br> Bjoern<o:p></o:p></p>
</div>
</div>
</blockquote>
<div>
<p class="MsoNormal" style="margin-left:35.4pt"><br>
<o:p></o:p></p>
</div>
</div>
</body>
</html>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic