Configuring SSO in LiveContentSecurity.xml

Adapting LiveContentSecurity.xml forces Collaborative Review to redirect the user to the STS whenever the user is not properly authenticated. Therefore a non-authenticated user will not go past the login page.

Procedure

  1. From the Collaborative Review installation folder, open \webapp\WEB-INF\LiveContentSecurity.xml and make these changes:
  2. Enable all <security-constraint> in the file.

Example LiveContentSecurity.xml

<security-role>
	<role-name>*</role-name>
</security-role>

<security-constraint>
	<web-resource-collection>
		<web-resource-name>Protected Area</web-resource-name>
		<url-pattern>/*</url-pattern>
	</web-resource-collection>
	<auth-constraint>
		<role-name>*</role-name>
	</auth-constraint>
</security-constraint>

<security-constraint>
	<web-resource-collection>
		<web-resource-name>Public</web-resource-name>
		<description>XmlRpc calls</description>
		<url-pattern>/xmlrpc/*</url-pattern>
	</web-resource-collection>
</security-constraint>