SlideShare a Scribd company logo

Pentaho Transparent Authentication Overview

Download as PPTX, PDF
Francesco Corti
Francesco Corti

Pentaho Transparent Authentication is a plugin for Pentaho BA Server that provides the platform with additional authentication and login capabilities, in the form of a spring security filter and a bunch of support classes. The goal of this project is to provide a transparent authentication and autologin mechanism, to let users switch between a different web application and Pentaho in an “Single Sign On fashion”. For more informations, please take a look at: http://fcorti.com/pentaho-transparent-authentication/

Software
1 of 30
Pentaho 1 Transparent Authentication Alberto Mercati - Francesco Corti
Alberto Mercati Senior Developer 2 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Francesco Corti ECM and BI specialist fcorti.com @FrkCorti github.com/fcorti it.linkedin.com/in/fcorti +FrancescoCorti codevomit.wordpress.com github.com/Rospaccio
The goal Imagine to be a web application3 London 7 Nov ‘15 P e n t a h o Community M e e t i n g #PCM15
The goal and you want to access the resources4 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Reports, Dashboards, Analytics, Ecc.{
The goal Pentaho BA Server manages permits5 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g
Accessing to Pentaho resources 6 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Identify a valid user Get a valid session Have access
Otherwise… 7 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Access denied!
The solution 8 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Having a valid key to Pentaho BA Server
How to reach that goal? 9 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Without storing passwords Without exchanging passwords in the URLs
Possibile solutions 10 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Use a C.A.S. => Pentaho can do it! Single user managed by the web application => Less secure and clean, but it works! Probably something else…
Possibile solutions 11 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Use a C.A.S. => Pentaho can do it! Single user managed by the web application => Less secure and clean, but it works! Probably something else… Our solution => Users mapping!
The solution 12 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application Web Application Session Pentaho User Pentaho SessionResources Pentaho Transparent Authentication
Pentaho Transparent Authentication is… 13 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g An extension of Pentaho BA Server services A collection of REST services that a web application invokes A mapper of an "external user" to a Pentaho user A creator of valid sessions in Pentaho
Interactions 14 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() Client (browser)
Interactions 15 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() 1.Pentaho recognize the ticket. 2.Pentaho creates a session. 3.Direct access to the resource. Client (browser) Compose the REST call 1.The user is mapped in a Pentaho user. 2.A ticket is created.
Interactions 16 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() Client (browser)
get_ticket() 17 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g http://<pentaho>/pentaho/Login?generate-ticket=1&app=test&username=user1 Base url. Tells the login ticket generator to issue a login ticket. Name of the application requesting the login ticket. Web application user name.
User resolution 18 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web application Username Pentaho Username myApplication user1 admin user2 pat user3 suzy anotherApplication userFromAnotherApp jeff ticket_id: e8617a46-d7d3-4bee-9345-e5fb8fea80fa Valid tickets are stored in a temporary cache per user The duration can be set in a configuration file
Interactions 19 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() Composing the target url Client (browser)
Composing the target url 20 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g https://<pentaho>/pentaho/Home?autologin=true&ticket=e8617a46-d7d3-4bee-9345- e5fb8fea80fa Base url. Autologin request. Ticket.
Interactions 21 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() The Pentaho autologin Client (browser)
The autologin 22 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Pentaho BA Server receives the autologin request
The autologin 23 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Pentaho BA Server receives the autologin request Pentaho BA Server checks the ticket in the temporary cache
The autologin 24 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Pentaho BA Server receives the autologin request Pentaho BA Server checks the ticket in the temporary cache If succeed the user is logged in the resource is accessed
PentahoTA is in the marketplace 25 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g
PentahoTA versions 26 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g => v1.0 v5.4 => v1.1 v6.0
Next steps 27 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Storing the mapping in a database instead of a configuration file Developing some admin RESTs to manage the CRUD operations Developing a user interface to manage the mapping
See it in action 28 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g
Q&A 29 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Pentaho Transparent Authentication
Pictures by 30 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g all rights reserved

Recommended

Explicación cmap
Explicación cmapExplicación cmap
Explicación cmapJoannaAA13
 
Bitcoin protocol for developers at techfest
Bitcoin protocol for developers at techfestBitcoin protocol for developers at techfest
Bitcoin protocol for developers at techfestAlberto Gomez Toribio
 
Bitcoin protocol for developerBitcoin Protocol for Developers
Bitcoin protocol for developerBitcoin Protocol for DevelopersBitcoin protocol for developerBitcoin Protocol for Developers
Bitcoin protocol for developerBitcoin Protocol for DevelopersParadigma Digital
 
FIDO Authentication: Its Evolution and Opportunities in Business -FIDO Allian...
FIDO Authentication: Its Evolution and Opportunities in Business -FIDO Allian...FIDO Authentication: Its Evolution and Opportunities in Business -FIDO Allian...
FIDO Authentication: Its Evolution and Opportunities in Business -FIDO Allian...FIDO Alliance
 
When business meets measurement protocol - atdconf - 2017 - Tel Aviv
When business meets measurement protocol - atdconf - 2017 - Tel AvivWhen business meets measurement protocol - atdconf - 2017 - Tel Aviv
When business meets measurement protocol - atdconf - 2017 - Tel AvivZorin Radovancevic
 
Google Analytics and Tracking Analytics Across Multiple Sites
Google Analytics and Tracking Analytics Across Multiple SitesGoogle Analytics and Tracking Analytics Across Multiple Sites
Google Analytics and Tracking Analytics Across Multiple SitesBrightfind
 
Products and Services
Products and ServicesProducts and Services
Products and Servicesbetserviceitalia
 
The Dark Side of Certificate Transparency
The Dark Side of Certificate TransparencyThe Dark Side of Certificate Transparency
The Dark Side of Certificate TransparencyAan
 

Recommended

Explicación cmap
Explicación cmapExplicación cmap
Explicación cmapJoannaAA13
 
Bitcoin protocol for developers at techfest
Bitcoin protocol for developers at techfestBitcoin protocol for developers at techfest
Bitcoin protocol for developers at techfestAlberto Gomez Toribio
 
Bitcoin protocol for developerBitcoin Protocol for Developers
Bitcoin protocol for developerBitcoin Protocol for DevelopersBitcoin protocol for developerBitcoin Protocol for Developers
Bitcoin protocol for developerBitcoin Protocol for DevelopersParadigma Digital
 
FIDO Authentication: Its Evolution and Opportunities in Business -FIDO Allian...
FIDO Authentication: Its Evolution and Opportunities in Business -FIDO Allian...FIDO Authentication: Its Evolution and Opportunities in Business -FIDO Allian...
FIDO Authentication: Its Evolution and Opportunities in Business -FIDO Allian...FIDO Alliance
 
When business meets measurement protocol - atdconf - 2017 - Tel Aviv
When business meets measurement protocol - atdconf - 2017 - Tel AvivWhen business meets measurement protocol - atdconf - 2017 - Tel Aviv
When business meets measurement protocol - atdconf - 2017 - Tel AvivZorin Radovancevic
 
Google Analytics and Tracking Analytics Across Multiple Sites
Google Analytics and Tracking Analytics Across Multiple SitesGoogle Analytics and Tracking Analytics Across Multiple Sites
Google Analytics and Tracking Analytics Across Multiple SitesBrightfind
 
Products and Services
Products and ServicesProducts and Services
Products and Servicesbetserviceitalia
 
The Dark Side of Certificate Transparency
The Dark Side of Certificate TransparencyThe Dark Side of Certificate Transparency
The Dark Side of Certificate TransparencyAan
 
Implementing Open Banking with ForgeRock
Implementing Open Banking with ForgeRockImplementing Open Banking with ForgeRock
Implementing Open Banking with ForgeRockForgeRock Identity Tech Talks
 
Batbwjs36
Batbwjs36Batbwjs36
Batbwjs36Shannon Gallagher
 
Zorin Radovancevic - All Things DATA 2017
Zorin Radovancevic - All Things DATA 2017Zorin Radovancevic - All Things DATA 2017
Zorin Radovancevic - All Things DATA 2017Shuki Mann
 
IoT: beyond the coffee machine
IoT: beyond the coffee machineIoT: beyond the coffee machine
IoT: beyond the coffee machineEric Favre
 
tit
tittit
titChristian Heinrich
 
Quantstamp (qsp)
Quantstamp (qsp)Quantstamp (qsp)
Quantstamp (qsp)Joseph Wilmouth
 
Gerrit Analytics applied to Android source code
Gerrit Analytics applied to Android source codeGerrit Analytics applied to Android source code
Gerrit Analytics applied to Android source codeLuca Milanesio
 
Understanding Business APIs through statistics
Understanding Business APIs through statisticsUnderstanding Business APIs through statistics
Understanding Business APIs through statisticsWSO2
 
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...Codemotion
 
The journey of an innovative and disruptive technology in a big and organized...
The journey of an innovative and disruptive technology in a big and organized...The journey of an innovative and disruptive technology in a big and organized...
The journey of an innovative and disruptive technology in a big and organized...Codemotion
 
Pcpgh3 Analytics
Pcpgh3 AnalyticsPcpgh3 Analytics
Pcpgh3 Analyticsitpittsburgh
 
DevOps Days Austin 2014 - Vendor DEMO
DevOps Days Austin 2014 - Vendor DEMODevOps Days Austin 2014 - Vendor DEMO
DevOps Days Austin 2014 - Vendor DEMOstonevil
 
Paris Tech Talk #5: From Pull to Push
Paris Tech Talk #5: From Pull to PushParis Tech Talk #5: From Pull to Push
Paris Tech Talk #5: From Pull to PushBetclic Everest Group Tech Team
 
PayPal Real Time Analytics
PayPal Real Time AnalyticsPayPal Real Time Analytics
PayPal Real Time AnalyticsAnil Madan
 
Analytics, part of my 2014-2015 lectures at the University of Bergamo.
Analytics, part of my 2014-2015 lectures at the University of Bergamo.Analytics, part of my 2014-2015 lectures at the University of Bergamo.
Analytics, part of my 2014-2015 lectures at the University of Bergamo.Roberto Peretta
 
online marketplace report
online marketplace reportonline marketplace report
online marketplace reportPriyanka Deoghare
 
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVentures
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVenturesBizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVentures
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVenturesR3
 
PTZOptics® 2016 Partner Webinar
PTZOptics® 2016 Partner WebinarPTZOptics® 2016 Partner Webinar
PTZOptics® 2016 Partner WebinarPaul Richards
 
How Le Wagon uses Trello
How Le Wagon uses TrelloHow Le Wagon uses Trello
How Le Wagon uses TrelloSébastien Saunier
 
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...apidays
 
Where developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is goingWhere developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is goingFrancesco Corti
 
From the origin to the future of Open Source model and business
From the origin to the future of Open Source model and businessFrom the origin to the future of Open Source model and business
From the origin to the future of Open Source model and businessFrancesco Corti
 

More Related Content

Similar to Pentaho Transparent Authentication Overview

Zorin Radovancevic - All Things DATA 2017
Zorin Radovancevic - All Things DATA 2017Zorin Radovancevic - All Things DATA 2017
Zorin Radovancevic - All Things DATA 2017Shuki Mann
 
IoT: beyond the coffee machine
IoT: beyond the coffee machineIoT: beyond the coffee machine
IoT: beyond the coffee machineEric Favre
 
Gerrit Analytics applied to Android source code
Gerrit Analytics applied to Android source codeGerrit Analytics applied to Android source code
Gerrit Analytics applied to Android source codeLuca Milanesio
 
Understanding Business APIs through statistics
Understanding Business APIs through statisticsUnderstanding Business APIs through statistics
Understanding Business APIs through statisticsWSO2
 
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...Codemotion
 
The journey of an innovative and disruptive technology in a big and organized...
The journey of an innovative and disruptive technology in a big and organized...The journey of an innovative and disruptive technology in a big and organized...
The journey of an innovative and disruptive technology in a big and organized...Codemotion
 
DevOps Days Austin 2014 - Vendor DEMO
DevOps Days Austin 2014 - Vendor DEMODevOps Days Austin 2014 - Vendor DEMO
DevOps Days Austin 2014 - Vendor DEMOstonevil
 
PayPal Real Time Analytics
PayPal Real Time AnalyticsPayPal Real Time Analytics
PayPal Real Time AnalyticsAnil Madan
 
Analytics, part of my 2014-2015 lectures at the University of Bergamo.
Analytics, part of my 2014-2015 lectures at the University of Bergamo.Analytics, part of my 2014-2015 lectures at the University of Bergamo.
Analytics, part of my 2014-2015 lectures at the University of Bergamo.Roberto Peretta
 
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVentures
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVenturesBizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVentures
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVenturesR3
 
PTZOptics® 2016 Partner Webinar
PTZOptics® 2016 Partner WebinarPTZOptics® 2016 Partner Webinar
PTZOptics® 2016 Partner WebinarPaul Richards
 
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...apidays
 

Similar to Pentaho Transparent Authentication Overview (20)

Implementing Open Banking with ForgeRock
Implementing Open Banking with ForgeRockImplementing Open Banking with ForgeRock
Implementing Open Banking with ForgeRock
 
Batbwjs36
Batbwjs36Batbwjs36
Batbwjs36
 
Zorin Radovancevic - All Things DATA 2017
Zorin Radovancevic - All Things DATA 2017Zorin Radovancevic - All Things DATA 2017
Zorin Radovancevic - All Things DATA 2017
 
IoT: beyond the coffee machine
IoT: beyond the coffee machineIoT: beyond the coffee machine
IoT: beyond the coffee machine
 
tit
tittit
tit
 
Quantstamp (qsp)
Quantstamp (qsp)Quantstamp (qsp)
Quantstamp (qsp)
 
Gerrit Analytics applied to Android source code
Gerrit Analytics applied to Android source codeGerrit Analytics applied to Android source code
Gerrit Analytics applied to Android source code
 
Understanding Business APIs through statistics
Understanding Business APIs through statisticsUnderstanding Business APIs through statistics
Understanding Business APIs through statistics
 
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...
Why I've to waste my time on cryptography? - Andrea Pompili - Codemotion Rome...
 
The journey of an innovative and disruptive technology in a big and organized...
The journey of an innovative and disruptive technology in a big and organized...The journey of an innovative and disruptive technology in a big and organized...
The journey of an innovative and disruptive technology in a big and organized...
 
Pcpgh3 Analytics
Pcpgh3 AnalyticsPcpgh3 Analytics
Pcpgh3 Analytics
 
DevOps Days Austin 2014 - Vendor DEMO
DevOps Days Austin 2014 - Vendor DEMODevOps Days Austin 2014 - Vendor DEMO
DevOps Days Austin 2014 - Vendor DEMO
 
Paris Tech Talk #5: From Pull to Push
Paris Tech Talk #5: From Pull to PushParis Tech Talk #5: From Pull to Push
Paris Tech Talk #5: From Pull to Push
 
PayPal Real Time Analytics
PayPal Real Time AnalyticsPayPal Real Time Analytics
PayPal Real Time Analytics
 
Analytics, part of my 2014-2015 lectures at the University of Bergamo.
Analytics, part of my 2014-2015 lectures at the University of Bergamo.Analytics, part of my 2014-2015 lectures at the University of Bergamo.
Analytics, part of my 2014-2015 lectures at the University of Bergamo.
 
online marketplace report
online marketplace reportonline marketplace report
online marketplace report
 
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVentures
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVenturesBizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVentures
BizDay: Digital Micro-Lending and Debt Crowd Funding Platform, JVentures
 
PTZOptics® 2016 Partner Webinar
PTZOptics® 2016 Partner WebinarPTZOptics® 2016 Partner Webinar
PTZOptics® 2016 Partner Webinar
 
How Le Wagon uses Trello
How Le Wagon uses TrelloHow Le Wagon uses Trello
How Le Wagon uses Trello
 
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...
apidays LIVE Paris 2021 - API Monetization by Marc-Antoine Lacroix (Qonto) & ...
 

More from Francesco Corti

Where developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is goingWhere developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is goingFrancesco Corti
 
From the origin to the future of Open Source model and business
From the origin to the future of Open Source model and businessFrom the origin to the future of Open Source model and business
From the origin to the future of Open Source model and businessFrancesco Corti
 
Successi (e insuccessi) nel lavoro in team con Product Manager, Engineering, ...
Successi (e insuccessi) nel lavoro in team con Product Manager, Engineering, ...Successi (e insuccessi) nel lavoro in team con Product Manager, Engineering, ...
Successi (e insuccessi) nel lavoro in team con Product Manager, Engineering, ...Francesco Corti
 
Lessons Learned About The Tension Between Product Manager And Engineering Whi...
Lessons Learned About The Tension Between Product Manager And Engineering Whi...Lessons Learned About The Tension Between Product Manager And Engineering Whi...
Lessons Learned About The Tension Between Product Manager And Engineering Whi...Francesco Corti
 
Organization and challenges (with best practices) behind a successful open-so...
Organization and challenges (with best practices) behind a successful open-so...Organization and challenges (with best practices) behind a successful open-so...
Organization and challenges (with best practices) behind a successful open-so...Francesco Corti
 
Caring About DevEx & the Impact of Open Source
Caring About DevEx & the Impact of Open SourceCaring About DevEx & the Impact of Open Source
Caring About DevEx & the Impact of Open SourceFrancesco Corti
 
How Spotify reaches the 80%+ of satisfaction of the techies making developers...
How Spotify reaches the 80%+ of satisfaction of the techies making developers...How Spotify reaches the 80%+ of satisfaction of the techies making developers...
How Spotify reaches the 80%+ of satisfaction of the techies making developers...Francesco Corti
 
Alfresco DevCon 2019 - Do you know what the Alfresco heartbeat is?
Alfresco DevCon 2019 - Do you know what the Alfresco heartbeat is?Alfresco DevCon 2019 - Do you know what the Alfresco heartbeat is?
Alfresco DevCon 2019 - Do you know what the Alfresco heartbeat is?Francesco Corti
 
Alfresco DevCon 2019 - Alfresco Identity Services in Action
Alfresco DevCon 2019 - Alfresco Identity Services in ActionAlfresco DevCon 2019 - Alfresco Identity Services in Action
Alfresco DevCon 2019 - Alfresco Identity Services in ActionFrancesco Corti
 
Alfresco DevCon 2018 - Embedding Pentaho dashboards into an Alfresco ADF appl...
Alfresco DevCon 2018 - Embedding Pentaho dashboards into an Alfresco ADF appl...Alfresco DevCon 2018 - Embedding Pentaho dashboards into an Alfresco ADF appl...
Alfresco DevCon 2018 - Embedding Pentaho dashboards into an Alfresco ADF appl...Francesco Corti
 
Pentaho 8 Reporting for Java Developers - Because details matter
Pentaho 8 Reporting for Java Developers - Because details matterPentaho 8 Reporting for Java Developers - Because details matter
Pentaho 8 Reporting for Java Developers - Because details matterFrancesco Corti
 
Next generation content intelligence (BeeCon 2017)
Next generation content intelligence (BeeCon 2017)Next generation content intelligence (BeeCon 2017)
Next generation content intelligence (BeeCon 2017)Francesco Corti
 
Alfresco press in Office Hours (2017-02-24)
Alfresco press in Office Hours (2017-02-24)Alfresco press in Office Hours (2017-02-24)
Alfresco press in Office Hours (2017-02-24)Francesco Corti
 
Alfresco press in Office Hours (2017-01-27)
Alfresco press in Office Hours (2017-01-27)Alfresco press in Office Hours (2017-01-27)
Alfresco press in Office Hours (2017-01-27)Francesco Corti
 
Alfresco press in Office Hours (2016-12-16)
Alfresco press in Office Hours (2016-12-16)Alfresco press in Office Hours (2016-12-16)
Alfresco press in Office Hours (2016-12-16)Francesco Corti
 
Alfresco press in Tech Talk Live #99
Alfresco press in Tech Talk Live #99Alfresco press in Tech Talk Live #99
Alfresco press in Tech Talk Live #99Francesco Corti
 
Content Intelligence on Alfresco with A.A.A.R. (BeeCon 2016)
Content Intelligence on Alfresco with A.A.A.R. (BeeCon 2016)Content Intelligence on Alfresco with A.A.A.R. (BeeCon 2016)
Content Intelligence on Alfresco with A.A.A.R. (BeeCon 2016)Francesco Corti
 
Alfresco Tech Talk n.73 - Business Intelligence for ECM Practitioners
Alfresco Tech Talk n.73 - Business Intelligence for ECM PractitionersAlfresco Tech Talk n.73 - Business Intelligence for ECM Practitioners
Alfresco Tech Talk n.73 - Business Intelligence for ECM PractitionersFrancesco Corti
 

More from Francesco Corti (18)

Where developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is goingWhere developers are challenged, what developers want and where DevEx is going
Where developers are challenged, what developers want and where DevEx is going
 
From the origin to the future of Open Source model and business
From the origin to the future of Open Source model and businessFrom the origin to the future of Open Source model and business
From the origin to the future of Open Source model and business
 
Successi (e insuccessi) nel lavoro in team con Product Manager, Engineering, ...
Successi (e insuccessi) nel lavoro in team con Product Manager, Engineering, ...Successi (e insuccessi) nel lavoro in team con Product Manager, Engineering, ...
Successi (e insuccessi) nel lavoro in team con Product Manager, Engineering, ...
 
Lessons Learned About The Tension Between Product Manager And Engineering Whi...
Lessons Learned About The Tension Between Product Manager And Engineering Whi...Lessons Learned About The Tension Between Product Manager And Engineering Whi...
Lessons Learned About The Tension Between Product Manager And Engineering Whi...
 
Organization and challenges (with best practices) behind a successful open-so...
Organization and challenges (with best practices) behind a successful open-so...Organization and challenges (with best practices) behind a successful open-so...
Organization and challenges (with best practices) behind a successful open-so...
 
Caring About DevEx & the Impact of Open Source
Caring About DevEx & the Impact of Open SourceCaring About DevEx & the Impact of Open Source
Caring About DevEx & the Impact of Open Source
 
How Spotify reaches the 80%+ of satisfaction of the techies making developers...
How Spotify reaches the 80%+ of satisfaction of the techies making developers...How Spotify reaches the 80%+ of satisfaction of the techies making developers...
How Spotify reaches the 80%+ of satisfaction of the techies making developers...
 
Alfresco DevCon 2019 - Do you know what the Alfresco heartbeat is?
Alfresco DevCon 2019 - Do you know what the Alfresco heartbeat is?Alfresco DevCon 2019 - Do you know what the Alfresco heartbeat is?
Alfresco DevCon 2019 - Do you know what the Alfresco heartbeat is?
 
Alfresco DevCon 2019 - Alfresco Identity Services in Action
Alfresco DevCon 2019 - Alfresco Identity Services in ActionAlfresco DevCon 2019 - Alfresco Identity Services in Action
Alfresco DevCon 2019 - Alfresco Identity Services in Action
 
Alfresco DevCon 2018 - Embedding Pentaho dashboards into an Alfresco ADF appl...
Alfresco DevCon 2018 - Embedding Pentaho dashboards into an Alfresco ADF appl...Alfresco DevCon 2018 - Embedding Pentaho dashboards into an Alfresco ADF appl...
Alfresco DevCon 2018 - Embedding Pentaho dashboards into an Alfresco ADF appl...
 
Pentaho 8 Reporting for Java Developers - Because details matter
Pentaho 8 Reporting for Java Developers - Because details matterPentaho 8 Reporting for Java Developers - Because details matter
Pentaho 8 Reporting for Java Developers - Because details matter
 
Next generation content intelligence (BeeCon 2017)
Next generation content intelligence (BeeCon 2017)Next generation content intelligence (BeeCon 2017)
Next generation content intelligence (BeeCon 2017)
 
Alfresco press in Office Hours (2017-02-24)
Alfresco press in Office Hours (2017-02-24)Alfresco press in Office Hours (2017-02-24)
Alfresco press in Office Hours (2017-02-24)
 
Alfresco press in Office Hours (2017-01-27)
Alfresco press in Office Hours (2017-01-27)Alfresco press in Office Hours (2017-01-27)
Alfresco press in Office Hours (2017-01-27)
 
Alfresco press in Office Hours (2016-12-16)
Alfresco press in Office Hours (2016-12-16)Alfresco press in Office Hours (2016-12-16)
Alfresco press in Office Hours (2016-12-16)
 
Alfresco press in Tech Talk Live #99
Alfresco press in Tech Talk Live #99Alfresco press in Tech Talk Live #99
Alfresco press in Tech Talk Live #99
 
Content Intelligence on Alfresco with A.A.A.R. (BeeCon 2016)
Content Intelligence on Alfresco with A.A.A.R. (BeeCon 2016)Content Intelligence on Alfresco with A.A.A.R. (BeeCon 2016)
Content Intelligence on Alfresco with A.A.A.R. (BeeCon 2016)
 
Alfresco Tech Talk n.73 - Business Intelligence for ECM Practitioners
Alfresco Tech Talk n.73 - Business Intelligence for ECM PractitionersAlfresco Tech Talk n.73 - Business Intelligence for ECM Practitioners
Alfresco Tech Talk n.73 - Business Intelligence for ECM Practitioners
 

Recently uploaded

Hand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxHand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxbodapatigopi8531
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfkalichargn70th171
 
Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝soniya singh
 
Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...OnePlan Solutions
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comFatema Valibhai
 
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio, Inc.
 
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...stazi3110
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationkaushalgiri8080
 
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...MyIntelliSource, Inc.
 
The Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfThe Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfPower Karaoke
 
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...Christina Lin
 
Professional Resume Template for Software Developers
Professional Resume Template for Software DevelopersProfessional Resume Template for Software Developers
Professional Resume Template for Software DevelopersVinodh Ram
 
DNT_Corporate presentation know about us
DNT_Corporate presentation know about usDNT_Corporate presentation know about us
DNT_Corporate presentation know about usDynamic Netsoft
 
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEBATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEOrtus Solutions, Corp
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxTier1 app
 
chapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptchapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptkotipi9215
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackVICTOR MAESTRE RAMIREZ
 
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataAdobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataBradBedford3
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsAlberto González Trastoy
 

Recently uploaded (20)

Hand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptxHand gesture recognition PROJECT PPT.pptx
Hand gesture recognition PROJECT PPT.pptx
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
 
Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝
Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝
 
Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.com
 
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
 
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanation
 
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
Steps To Getting Up And Running Quickly With MyTimeClock Employee Scheduling ...
 
The Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfThe Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdf
 
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
ODSC - Batch to Stream workshop - integration of Apache Spark, Cassandra, Pos...
 
Professional Resume Template for Software Developers
Professional Resume Template for Software DevelopersProfessional Resume Template for Software Developers
Professional Resume Template for Software Developers
 
DNT_Corporate presentation know about us
DNT_Corporate presentation know about usDNT_Corporate presentation know about us
DNT_Corporate presentation know about us
 
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEBATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
 
Call Girls In Mukherjee Nagar 📱 9999965857 🤩 Delhi 🫦 HOT AND SEXY VVIP 🍎 SE...
Call Girls In Mukherjee Nagar 📱 9999965857 🤩 Delhi 🫦 HOT AND SEXY VVIP 🍎 SE...Call Girls In Mukherjee Nagar 📱 9999965857 🤩 Delhi 🫦 HOT AND SEXY VVIP 🍎 SE...
Call Girls In Mukherjee Nagar 📱 9999965857 🤩 Delhi 🫦 HOT AND SEXY VVIP 🍎 SE...
 
chapter--4-software-project-planning.ppt
chapter--4-software-project-planning.pptchapter--4-software-project-planning.ppt
chapter--4-software-project-planning.ppt
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStack
 
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataAdobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
 

Pentaho Transparent Authentication Overview

  • 2. Alberto Mercati Senior Developer 2 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Francesco Corti ECM and BI specialist fcorti.com @FrkCorti github.com/fcorti it.linkedin.com/in/fcorti +FrancescoCorti codevomit.wordpress.com github.com/Rospaccio
  • 3. The goal Imagine to be a web application3 London 7 Nov ‘15 P e n t a h o Community M e e t i n g #PCM15
  • 4. The goal and you want to access the resources4 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Reports, Dashboards, Analytics, Ecc.{
  • 5. The goal Pentaho BA Server manages permits5 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g
  • 6. Accessing to Pentaho resources 6 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Identify a valid user Get a valid session Have access
  • 7. Otherwise… 7 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Access denied!
  • 8. The solution 8 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Having a valid key to Pentaho BA Server
  • 9. How to reach that goal? 9 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Without storing passwords Without exchanging passwords in the URLs
  • 10. Possibile solutions 10 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Use a C.A.S. => Pentaho can do it! Single user managed by the web application => Less secure and clean, but it works! Probably something else…
  • 11. Possibile solutions 11 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Use a C.A.S. => Pentaho can do it! Single user managed by the web application => Less secure and clean, but it works! Probably something else… Our solution => Users mapping!
  • 12. The solution 12 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application Web Application Session Pentaho User Pentaho SessionResources Pentaho Transparent Authentication
  • 13. Pentaho Transparent Authentication is… 13 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g An extension of Pentaho BA Server services A collection of REST services that a web application invokes A mapper of an "external user" to a Pentaho user A creator of valid sessions in Pentaho
  • 14. Interactions 14 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() Client (browser)
  • 15. Interactions 15 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() 1.Pentaho recognize the ticket. 2.Pentaho creates a session. 3.Direct access to the resource. Client (browser) Compose the REST call 1.The user is mapped in a Pentaho user. 2.A ticket is created.
  • 16. Interactions 16 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() Client (browser)
  • 17. get_ticket() 17 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g http://<pentaho>/pentaho/Login?generate-ticket=1&app=test&username=user1 Base url. Tells the login ticket generator to issue a login ticket. Name of the application requesting the login ticket. Web application user name.
  • 18. User resolution 18 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web application Username Pentaho Username myApplication user1 admin user2 pat user3 suzy anotherApplication userFromAnotherApp jeff ticket_id: e8617a46-d7d3-4bee-9345-e5fb8fea80fa Valid tickets are stored in a temporary cache per user The duration can be set in a configuration file
  • 19. Interactions 19 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() Composing the target url Client (browser)
  • 20. Composing the target url 20 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g https://<pentaho>/pentaho/Home?autologin=true&ticket=e8617a46-d7d3-4bee-9345- e5fb8fea80fa Base url. Autologin request. Ticket.
  • 21. Interactions 21 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Web Application + click() get_ticket() ticket target_url redirect() The Pentaho autologin Client (browser)
  • 22. The autologin 22 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Pentaho BA Server receives the autologin request
  • 23. The autologin 23 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Pentaho BA Server receives the autologin request Pentaho BA Server checks the ticket in the temporary cache
  • 24. The autologin 24 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Pentaho BA Server receives the autologin request Pentaho BA Server checks the ticket in the temporary cache If succeed the user is logged in the resource is accessed
  • 25. PentahoTA is in the marketplace 25 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g
  • 26. PentahoTA versions 26 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g => v1.0 v5.4 => v1.1 v6.0
  • 27. Next steps 27 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Storing the mapping in a database instead of a configuration file Developing some admin RESTs to manage the CRUD operations Developing a user interface to manage the mapping
  • 28. See it in action 28 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g
  • 29. Q&A 29 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g Pentaho Transparent Authentication
  • 30. Pictures by 30 #PCM15 London 7 Nov ‘15 P e n t a h o Community M e e t i n g all rights reserved