Problem with Confluence, Seraph and a custom SSO

I am working on a custom authentication solution for our Atlassian installation. I have modified the login.url and the link.login.url init-params in the seraph-config.xml to point to our authentication service. After the user has authenticated to our external system, I am unable to add the user (Principal) to the session in a way that Confluence recognizes that the user is authenticated. This causes a loop between Confluence and the authentication system resulting in a redirect loop error message in the browser.

I am using the Atlassian refapp for my plugin because I would like to apply this plugin to Jira, Confluence, Stash and Bamboo. After successfully logging in via the custom authentication solution and looking up the user in the UserProfile privded by the Atlassian UserManager:

UserProfile userProfile = userManager.getUserProfile(uid);

final String jiraUsername = userProfile.getUsername();

I attempt to add the user (Principal) to the session with the following code:

request.getSession().setAttribute(ConfluenceAuthenticator.LOGGED_IN_KEY, principal);

request.getSession().setAttribute(ConfluenceAuthenticator.LOGGED_OUT_KEY, null);

Pretty much the same code works for Jira (using DefaultAuthenticator instead of ConfluenceAuthenticator). Is there something else I need to do to get Confluence to recognize the authenticated user?

1 answer

1 accepted

Hi Lloyd,

I never used a UserProfile for that, just take a ConfluenceUser. and maybe this one helps:

Just use the Confluence(GroupJoining)Authenticator instead of the DefaultAuthenticator

And I think those two lines might help

authoriseUserAndEstablishSession(request, response, user);
 getElevatedSecurityGuard().onSuccessfulLoginAttempt(request, user.getName());



Thanks Steve! This tip pointed me in the right direction and I was able to resolve my issue.

Suggest an answer

Log in or Sign up to answer
Community showcase
Published Dec 18, 2018 in Confluence Cloud

Happy holidays from our team to yours!

Hi Community!  2018 was filled with changes for our team, both big and small, and we've taken a lot of time to both celebrate our wins and recognize areas of improvement. One thing that we're a...

473 views 3 18
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you