I'm integration Crowd REST into our site where we also want to SSO towards Confluence & JIRA.
I'm getting a token back from HTTP POST /session?validate-password=false but where to leave it then to accomplish SSO?
Community moderators have prevented the ability to post new answers.
First you should make sure your new site works in the same domain as Confluence & Jira.
And then create a cookie with name "crowd.token_key" and set Path = "/" and domain name would automatically be setted to same domain and set the value received from Crowd.
For making any application SSO enabled, you just need a cookie which can be read by all the application servers and that is possible only if they run in same domain and all the servers use same cookie name. :)
I have done what you said and thus the crowd.tokenkey cookie is available to both Confluence & JIRA but they don't seem to process it. Both Confluence and JIRA will do SSO amongst themselves if I login to either of them and then go to the other one.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.