JOSSO 1.6 released: Java Open Single-Signon Meets Spring


News: JOSSO 1.6 released: Java Open Single-Signon Meets Spring

  1. JOSSO, or Java Open Single Sign-On, is an open source J2EE-based and Spring-compatible SSO infrastructure aimed to provide a solution for centralized platform neutral user authentication. The 1.6 version includes full support for the Spring framework, by leveraging its IoC container and integrating Acegi Security for fine-grained access control and authorization. What's new in 1.6:
    • Includes full support for Spring 2.0
    • Allows defining SSO beans using the Spring XML configuration format while keeping backward compatibility with the legacy one.
    • JOSSO can now be used as the single sign-on facility for Acegi
    • Acegi integration for authorization and instance-based access control based on the JOSSO-specific security context
    • Leverages Spring framework's JMX management infrastructure
    • Introduces compatibility with JBoss 4.2 and 4.2.1
    • Introduces compatibility with Jakarta Tomcat 6 web container
    • Includes extensiblity enhancements and bug fixes
    Download from : JOSSO's main features include:
    • JAAS-based transparent cross-organization/cross-domain Single Sign-On across multiple applications and hosts
    • Built-in with a Pluggable Framework to allow the implementation of multiple authentication schemes and stores
    • Runs in JBoss 3.2, 4.0 and 4.2.1 application servers
    • Runs in Jakarta Tomcat 5.0, 5.5 and 6 web container
    • Provides Identity information to web applications and EJBs through the standard Servlet and EJB Security API respectively
    • Supports Strong Authentication using X.509 client certificates
    • LDAP support for storing user information and credentials
    • Microsoft Active Directory support for LDAP integration
    • Database support for storing user information and credentials
    • XML support for storing user information and credentials
    • Client API for PHP. This allows to build SSO-enabled PHP applications
    • Client API for Microsoft ASP. This allows to build SSO-enabled ASP applications
    • Support for allowing SSO Monitoring and Management through JMX
    • Pluggable Event and Auditing management
    • Support for clustered Single Sign-On deployments
    • Compatibility with Apache Pluto Portlet Container
    • Supports programmatic authentication for remote SOAP clients
    • Spring 2.0 and Acegi Support
    • Standards Based: JAAS, Web Services/SOAP, EJB, Struts, Servlet/JSP
    • Availability of pre-configured Jakarta Tomcat and JBoss bundles
    • 100% Java with JDK5 compatibility

    Threaded Messages (2)

  2. JOSSO vs. CAS[ Go to top ]

    Could somebody summarize how JOSSO is better/different than CAS, please?
  3. Metrics for JOSSO[ Go to top ]

    Hei! If you interested in JOSSO you could also take a look at metrics we have gathered on this project. cheers, Mark