Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

How to login without password (token-based) into confluence 6.8 from crowd SSO ?

hamed_hatami April 22, 2018

Hi there,

I want to login into confluence 6.8 from my web application without password 

actually, I need to login into confluence by username only 

I can get the user token from rest api but when i put the user token in cookie and return back to confluence , nothing happened


I have integrated confluence with Crowd and I have activated the SSO but I don't know how can I use crown in my web application ??

Is there any easy solution to login ??? 


My  email address :



Hamed Hatami

4 answers

0 votes
hamed_hatami April 22, 2018

This is a snipet of code to getting token from crowd and then I should goto confluence or jira from inside of my web application that is based on Java EE 7 :  


public static String getToken(String propertyName, String username, String password) throws Exception {
String token = "";
Properties crowd_props = new Properties();
crowd_props.load(CrowdClientUtil.class.getClassLoader().getResourceAsStream("/" + propertyName.trim()));
ClientProperties clientProperties = ClientPropertiesImpl.newInstanceFromProperties(crowd_props);
CrowdClient crowdClient = new;
/* CrowdHttpAuthenticator crowdHttpAuthenticator = new CrowdHttpAuthenticatorImpl(crowdClient,
UserAuthenticationContext userAuthenticationContext = new UserAuthenticationContext();
userAuthenticationContext.setCredential(new PasswordCredential(password, false));
ValidationFactor[] factors = new ValidationFactor[]{
new ValidationFactor("remote_address", ""),
new ValidationFactor("X-Forwarded-For", clientProperties.getApplicationAuthenticationURL())


token = crowdClient.authenticateSSOUserWithoutValidatingPassword(userAuthenticationContext);

return token;



Actually I also have file in my web application and client crowd jar file to access

0 votes
hamed_hatami April 22, 2018

I have changed the "seraph-config.xml" file in (confluence and jira) side to use sso authenticator instead of simple authenticator and then I have created many users and groups with specific access rights to a specific directory in crowd side and import the users and groups from (confluence and jira) into crowd and in (confluence and jira), I have set the correct groups and users into specific user directory and  WhiteList has been created too although I have created application link to connect all of them together so I need connect as sso like into crowd and then go to confluence or jira without login (token-based) easily and actually do everything from my web application programmatically and I should have access to crowd from my web application by client api or rest invocation and then with some doing task that you should specify for me , i should go directly into confluence or jira,

I have read the documents of crowd and confluence / jira and there is not step by step and clear document about how to exactly configured or there is not an clear example on github ....


I have got stucked in this problem and   I need to give me a hand ASAP.


Thanks in advance

0 votes
hamed_hatami April 22, 2018

As a matter of fact, my web application is a  client of crowd and I can get token from crowd but I need an exact example of parameter should set into confluence url to authenticated correctly, and directly goes to confluence in my web application response

0 votes
hamed_hatami April 22, 2018

Actually, I have integrated Crowd's (users and groups) with Confluence and Jira but one of my important requirements was to use crowd as SSO center and my web application should redirect to confluence/jira pages without login ???

Suggest an answer

Log in or Sign up to answer
AUG Leaders

Atlassian Community Events