i tried to research this more and found that you need to create a java authenticator? or has someone succesfully been able to develop this and be able to use it to enable log-in with certs or CAC? looking to see if there is a free plug-in or code that i can fork over. Just have a customer that wants this and looking at the options of what i can do.
I've done a basic implementation of this for a client - x509 certificates were in use. Like you, I had to build a java authenticator for JIRA and Confluence.
The main problem I had was not the code, but that the certificates they wanted to use were fine for authorisation (you have a certificate, yup, we'll let you get to JIRA) but did not contain enough information to uniquely and strongly identify a user.
The actual code handling the cert was only really a few lines long (it picked up the cert from the header Apache passed on to it, did a bit of parsing, and then did the identity scan based on the cert details)
Hey admins! I’m Dave, Principal Product Manager here at Atlassian working on our cloud platform and security products. Cloud security is a moving target. As you adopt more products, employees consta...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs