Clarity

marcio_inhesta wrote:

Hi,

We have to implement Clarity SSO integration with IBM Websphere Portal in our client.

IBM Websphere Portal generates an LTPA token, encrypted token that is placed in a browser cookie.

Since this token is encrypted, we have to decrypt it to extract username logged in Websphere Portal and then allow him to log into Clarity PPM.

Someone have any reference of a past implementation of integrating with IBM Websphere Portal to provide us guidelines about how to proceed?

We using Clarity r13.1.

Thanks a lot,
Marcio Inhesta
Mais2x

Hello Marcio,

We encountered the similar requirement. Did you solve this integration problem? If solved, could you share your solution with me?

Thanks a lot.

Roy

Hi,

Unfortunatelly no. CA PPm does not have integration with IBM Websphere.

Rgds,

Marcio Inhesta

So in a effort to do smart card authentication https://communities.ca.com/thread/241742752

I was able to build my own SSO HttpServlet prototype for CA PPM.  What I did was to run an embedded Jetty server hosting a HttpServlet that prompts the user for their smart card credentials. 

Once I have the user's client certificate, I pop over to the LDAP server to get the user's information and check to see if the user belongs to the Authorized PPM User group.

If not, I bounce them to the organizational home page otherwise I save the SSO cookie with the user's login token.  This currently works as both PPM and my SSO servlet are on the same server separated by ports.

When I get around to it, I am going to place the SSO information into the headers to remove the need to be on the same server.

So I would assume that if you created a new Portal project for hosting in the WebSphere Portal, you would be able to pull the LTPA token from the cookie given the portlet page is on the same domain as the login page.  Once you have the LTPA token decoded add the correct SSO values to the response header and then sendRedirect to the client.

Just Thoughts,

Gene