Skip to main contentSkip to search
Powered by Zoomin Software. For more details please contactZoomin
Progress DocumentationProgress Documentation
Progress Documentation
  • Home
  • Home
  • EnglishČeštinaDeutsch (Germany)Español (Spain)FrançaisItaliano (Italy)Português (Brasil)日本語Русский (Russia)中文 (简体) (China)中文 (繁體, 台灣) (Taiwan)ar-AR
  • Login

Manage Progress Application Server (PAS) for OpenEdge

PAS for OpenEdge Guide to SSO Token Handling

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
Table of Contents
  • Learn about PAS for OpenEdge administration
    • Move a Progress Application Server to Production
    • Development versus production instances
    • Missing and disabled features in production
    • Security configurations
    • Licensing and installation
    • PAS for OpenEdge configuration properties
      • Configure Tomcat properties
      • Configure OpenEdge properties
      • Configure environment variables
      • Configure logging properties
      • Configure security properties
      • Configure Progress Application Server properties
      • Configure adapter properties
    • PAS for OpenEdge configuration tools
      • Tomcat utilities
      • TCMAN
      • PASOESTART
      • PASMAN
      • SECPROP
      • OEPROP
      • PASPROPCONV
      • Utilities to manage keys and digital certificates
      • OpenEdge Management and OpenEdge Explorer
      • JConsole and JMX
        • Run JConsole locally
        • Run JConsole remotely
      • OEJMX utility
    • What you need from the developer
    • Move to production checklist
  • Create and configure PAS for OpenEdge instances
    • Create a PAS for OpenEdge production instance
      • Use PASMAN to create an instance
      • Use OpenEdge Management to create an instance
      • Create a PAS for OpenEdge instance with OpenEdge Command Center
      • Check the security model of the instance
    • Start and stop a PAS for OpenEdge instance
      • Use PASMAN to start and stop an instance
      • Use OpenEdge Management to start and stop an instance
      • Start or stop a PAS for OpenEdge instance with OpenEdge Command Center
      • Run PAS for OpenEdge as a non-root user
    • Automate lifecycle event scripts
    • Configure a PAS for OpenEdge instance
      • Use PASMAN to configure an instance
      • Use OpenEdge Management to configure an instance
      • Modify PAS for OpenEdge configuration properties with OpenEdge Command Center
    • Connect to an OpenEdge database from PAS for OpenEdge
    • Register a PAS for OpenEdge instance as a Windows service
    • Delete a PAS for OpenEdge instance
      • Use PASMAN to delete an instance
      • Use OpenEdge Management to delete an instance
      • Delete a PAS for OpenEdge instance with OpenEdge Command Center
    • Configure private PAS for OpenEdge instance tracking
  • Application deployment in PAS for OpenEdge
    • Configure properties for deployment
      • Set the PROPATH
      • Set database connections
      • Enable transports
      • Set agents and sessions
      • Modify environment variables
    • Stage r-code
    • OpenEdge Application Archive Structure
    • Create an OpenEdge Application Archive using tcman export
    • Create an OpenEdge Application Archive using an Ant Build
    • Tailor an ABLApp installation using Ant
    • Deployment artifacts
      • Deploy an OpenEdge Application Archive using tcman import
      • Deploy REST services
        • JSON documentation for REST-based services
      • Deploy ABL services
      • Deploy SOAP services
      • Deploy web handler services
      • Deploy an ABL web application
      • Deploy remote administration applications
    • ABL application PING service
    • Package an instance for production
  • Secure PAS for OpenEdge instances
    • Production instance security customizations
    • Enable ABL application authentication
      • URL access control file
      • Local and Extended Local user accounts
        • Generate encrypted passwords with GENSPRINGPWD
      • LDAP user accounts
      • Active Directory user accounts
      • OERealm user account configurations
        • Create an OERealm service interface
          • Sample HybridRealm.cls
          • Sample OERealmDefs.cls
          • Sample Properties.cls
        • Integrate OERealm with Spring Security for PAS for OpenEdge
        • Manage OERealm security domains and roles in the database
        • OERealm security considerations
      • Multi-domain support for user accounts
        • Resolve user-id and domain names
        • Obtain a domain name from a role name
        • Configure multiple domains
        • OpenEdge domains in LDAP configurations
    • Disable HTTP in production instances
    • Use TLS in PAS for OpenEdge
      • Obtain a certificate from a Certificate Authority
      • Configure clients for TLS
      • Configure a PAS for OpenEdge instance for TLS
    • Learn about Client Authentication
      • Configure ABL Client Authentication
      • Configure a PAS for OpenEdge Instance for Client Authentication
    • Configure Spring Security
      • About oeablSecurity.properties files
      • Single sign-on (SSO) support
      • CORS support
      • Use CORS
      • OpenEdge 12.2.15 Spring security changes
    • Manage users and remote access
      • User and file permissions
      • Role-based user authentication
      • Remote access filters
    • Authenticate using OpenEdge Authentication Gateway as a Security Token Service (STS)
    • Authenticate using OAuth2 and JWT
      • OAuth2 concepts and terms
      • OAuth2 security considerations
      • OAuth2 Tokens
      • JSON Web Tokens (JWT)
      • Support for OAuth2 and JWT in PAS for OpenEdge
        • OAuth2 configuration files
        • Enable OAuth2 support
      • Configure a PAS for OpenEdge web application as an OAuth2 Resource Server
        • Configure OAuth2 or JWT Token Validation Services
        • Configure JWT Signature Field Validation
        • Configure JWT Payload Field Validation
        • Configure Self-Contained Access Token Validation
        • Authorize access to URLs and HTTP Methods
        • Configure JWT/OAuth2 Self-contained Access Token conversion to an OpenEdge Client-Principals
      • Debug Logging for OAuth2
    • Authenticate using SAML
      • SAML concepts and terms
      • Support for SAML in PAS for OpenEdge
      • Implement SAML in a PAS for OpenEdge web application
      • Debug logging for SAML
    • Extend OpenEdge SSO to web applications
      • PAS for OpenEdge SSO technologies
        • PAS for OpenEdge SSO Tokens
        • OpenEdge Domain Seal and Validation Support
      • PAS for OpenEdge SSO Configuration Guide
        • Configure the Validation and Use of Native OpenEdge SSO Token in Client Requests
        • Configure the Generation of OpenEdge Native SSO Tokens
        • Configure Refresh of OpenEdge Native SSO Tokens
      • PAS for OpenEdge Guide to SSO Token Handling
        • HTTP FORM Authentication Model
        • HTTP BASIC Authentication Model
        • SSO Authentication Model
        • SSO Refresh Model
        • SSO Token Error Codes
    • Support for Server Name Indication
      • STS Client Utility (stsclientutil)
      • stsurlutil update utility
  • Tune PAS for OpenEdge instances
    • PAS for OpenEdge tuning recommendations
    • Goals and common steps for tuning PAS for OpenEdge instances
    • PAS for OpenEdge server-side tuning
      • JVM parameters
      • Network connections
      • HTTP/HTTPS request processing
      • PAS for OpenEdge instance parameters
    • Tune OpenEdge web applications and MS Agents
      • ABL Session Manager and session pool
      • Web application startup parameters
  • Load balance PAS for OpenEdge instances
    • Scaling considerations in PAS for OpenEdge
    • Enable HTTP sessions for the APSV transport
    • Clusters and sticky sessions
    • Apache proxy host load balancing
      • Requirements for Apache proxy load balancing
      • Configure the Apache server for proxy load balancing
      • Configure PAS for OpenEdge instances for proxy load balancing
    • Tomcat load balancing
      • Requirements for Tomcat load balancing
      • Configure an Apache web server for Tomcat load balancing
      • Configure PAS for OpenEdge for Tomcat load balancing
    • Amazon load balancing
      • Configure Elastic Load Balancing and Auto Scaling
    • Docker container load balancing
  • Monitor PAS for OpenEdge instances
    • Configure logging in PAS for OpenEdge
      • Configure Tomcat and Tomcat web application logging
      • Configure PAS for OpenEdge application logging
      • Configure ABL application agent logging
      • Configure log file patterns
      • Configure MDC access for header requests
      • Configure the log file directory path
      • Configure log rollover settings
    • Use deferred logging in PAS for OpenEdge
    • Use OEJMX to manage and monitor an instance
      • MBeans and their operations
        • Agent management
        • Session management
        • Transport management
          • WEB transport manager
          • APSV transport manager
          • REST transport manager
          • SOAP transport manager
        • OEABL services management
      • List available MBeans to locate AgentManager details
      • Write a custom OEJMX query to get agents
      • Get agent information
      • Generate a stack trace
      • Common OEJMX queries
    • Use Server-Side ABL Performance Profiling
      • What is Server-Side Profiling?
      • Configure the diagnostic store
      • Configure Server-Side Profiling with PAS for OpenEdge
      • Supported JSON values for JMX queries
    • Use Swagger UI to explore management REST APIs
      • Enable Swagger UI for management REST API access
      • Explore and test management REST APIs
    • Use the OpenEdge HealthScanner
      • Primary use case
      • How is the data collected?
      • Create an instance
      • Start the HealthScanner
        • Enable the HealthScanner
        • Turn on data collection
      • Access HealthScanner data
        • Return the HealthScanner status code
        • Return a JSON summary view
        • Return a JSON details view
        • Return as an OEJMX query
      • Display results of a healthy REST call
      • Display results of an unhealthy REST call
      • Customize HealthScanner reports
      • Write a custom HealthScanner view
    • Collect runtime metrics
    • Enable debugging
    • About session and request states
    • Troubleshoot problems with an instance
    • Find memory leaks using ABL object tracking
  • Optimize PAS for OpenEdge for continuous operations
    • Secure online deployment of a new ABL application
    • Update PROPATH in a production instance with zero downtime
    • Refresh agents in an ABL application
    • Enhanced ABL session management
Table of Contents

PAS for OpenEdge Guide to SSO Token Handling

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
  • Last Updated: August 19, 2021
  • 1 minute read
    • OpenEdge
    • Version 12.2
    • Documentation

This topic describes SSO authentication models and is for HTTP Client application developers who want to use native OpenEdge SSO token functionality. This topic also contains the information on the formation of HTTP requests and interpretation of HTTP responses.

Contents
  • HTTP FORM Authentication Model
  • HTTP BASIC Authentication Model
  • SSO Authentication Model
  • SSO Refresh Model
  • SSO Token Error Codes
TitleResults for “How to create a CRG?”Also Available inAlert