<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:x="urn:schemas-microsoft-com:office:excel" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Cambria;
panose-1:2 4 5 3 5 4 6 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.EmailStyle19
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle20
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:407654638;
mso-list-template-ids:-214413722;}
@list l0:level1
{mso-level-start-at:2;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level2
{mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1
{mso-list-id:695885193;
mso-list-template-ids:420379908;}
@list l1:level1
{mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level2
{mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2
{mso-list-id:1147239811;
mso-list-template-ids:-1268449522;}
@list l2:level1
{mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3
{mso-list-id:1150907323;
mso-list-template-ids:1440654236;}
@list l3:level1
{mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level2
{mso-level-start-at:2;
mso-level-number-format:alpha-lower;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal"><span lang="EN-IN" style="color:black">Hello Midpoint team,</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black">Please be informed that our company (8K Miles Software Services) is the partner with Evolveum (Please find the link
<a href="https://evolveum.com/partners/8k-miles/">https://evolveum.com/partners/8k-miles/</a>) and we are working on a requirement based on a feedback from a prospect. We would like to inform you that the required use case is working in Midpoint 3.6, whereas
while replicating the same in 3.9 version we are not able to proceed. Regarding this, we would like to get clarifications on Midpoint being able to accept the “authentication” based upon the availability of username in the HTTP header.</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black">Using Midpoint version 3.6, we are able to accept the http header based authentication using the following steps.
</span><span style="color:black"><o:p></o:p></span></p>
<ol style="margin-top:0in" start="1" type="1">
<li class="MsoListParagraph" style="color:black;margin-left:0in;mso-list:l1 level1 lfo1">
<span lang="EN-IN">Changes to the config file <a href="gui/admin-gui/src/main/webapp/WEB-INF/ctx-web-security.xml" target="_blank">
gui/admin-gui/src/main/webapp/WEB-INF/ctx-web-security.xml</a></span><o:p></o:p></li></ol>
<p class="MsoNormal" style="text-indent:.5in"><span lang="EN-IN" style="color:black">Uncommenting following line:</span><span style="color:black"><o:p></o:p></span></p>
<ol style="margin-top:0in" start="1" type="1">
<ol style="margin-top:0in" start="1" type="a">
<li class="MsoListParagraph" style="color:black;margin-left:0in;mso-list:l2 level2 lfo2">
<span lang="EN-IN"><custom-filter position="PRE_AUTH_FILTER" ref="requestHeaderAuthenticationFilter" /></span><o:p></o:p></li></ol>
</ol>
<p class="MsoListParagraph" style="margin-left:1.0in"><span lang="EN-IN" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
<ol style="margin-top:0in" start="1" type="1">
<ol style="margin-top:0in" start="2" type="a">
<li class="MsoListParagraph" style="color:black;margin-left:0in;mso-list:l3 level2 lfo3">
<span lang="EN-IN"><beans:bean id="requestHeaderAuthenticationFilter" class="org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter"></span><o:p></o:p></li></ol>
</ol>
<p class="MsoListParagraph" style="margin-left:1.0in"><span lang="EN-IN" style="color:black"> <beans:property name="principalRequestHeader" value="SM_USER"/></span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoListParagraph" style="margin-left:1.0in"><span lang="EN-IN" style="color:black"> <beans:property name="authenticationManager" ref="authenticationManager" /></span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoListParagraph" style="margin-left:1.0in"><span lang="EN-IN" style="color:black"></beans:bean></span><span style="color:black"><o:p></o:p></span></p>
<ol style="margin-top:0in" start="2" type="1">
<li class="MsoListParagraph" style="color:black;margin-left:0in;mso-list:l0 level1 lfo4">
<span lang="EN-IN">Posting the following header to <a href="/midpoint/spring_security_login" target="_blank">
/midpoint/spring_security_login</a></span><o:p></o:p></li></ol>
<p class="MsoListParagraph"><span lang="EN-IN" style="color:black">SM_USER: {Username}</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoListParagraph"><span lang="EN-IN" style="color:black">Note: Username corresponds to name of the user object in MidPoint</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black">However, we are not able to replicate the same in Midpoint version 3.9 as we are not able to identify the config file
<a href="https://apc01.safelinks.protection.outlook.com/?url=ctx-web-security.xml&data=02%7C01%7Cppradeep%408kmiles.com%7Ce3098cf571f144a52ac508d7158be30b%7C39282642841847f5bdec4c1dfbcf42e9%7C0%7C0%7C637001562959867414&sdata=V4RKL1fhRyrTrmgpwQrIetdwT2BZlwOO%2Byty7%2B%2B0J8U%3D&reserved=0" target="_blank">
ctx-web-security.xml</a>. Kindly confirm, if the above functionality is supported in Midpoint 3.9 either directly or indirectly.</span><span lang="EN-IN">
<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN">Also <span style="color:black">please confirm, whether MidPoint 3.9 version supports SSO (i.e., any alternative available in place of ctx-web-security.xml file to perform CAS SSO or SM User POST authentication)?
</span><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black">Kindly revert for any clarifications.</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black">Thanks,</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="color:black">Pradeep</span><span style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white"><span lang="EN-GB" style="color:#1F497D"><img border="0" width="94" height="32" style="width:.9791in;height:.3333in" id="_x0000_i1025" src="cid:image001.jpg@01D547AB.E3A552A0" alt="2017-01-23 at 14-36-18"></span><span style="font-size:12.0pt;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white"><b><span style="font-size:12.0pt;color:black">Manager - Partner Relations </span></b><b><span lang="EN-GB" style="font-size:12.0pt;color:black"><o:p></o:p></span></b></p>
<p class="MsoNormal" style="background:white"><span style="color:black">|O: 650 242-9887 |</span><span lang="EN-GB" style="color:black">M: +91 9940240394|<o:p></o:p></span></p>
<p class="MsoNormal" style="background:white"><span lang="EN-GB" style="color:black">|e-Mail: <a href="mailto:ppradeep@8kmiles.com%7C" target="_blank"><span style="color:blue">ppradeep@8kmiles.com|</span></a><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white"><span style="color:black"><a href="http://www.8kmiles.com/"><span style="color:blue">http://www.8kmiles.com</span></a></span><span lang="EN-GB" style="color:black"><o:p></o:p></span></p>
<p class="MsoNormal"><a href="https://www.facebook.com/8kmilessoftwares"><span style="font-family:"Cambria",serif;color:blue;mso-fareast-language:EN-IN;text-decoration:none"><img border="0" width="23" height="28" style="width:.2395in;height:.2916in" id="Picture_x0020_1" src="cid:image002.jpg@01D547AB.E3A552A0" alt="F1"></span></a><a href="https://twitter.com/8KMiles"><span style="font-family:"Cambria",serif;color:blue;mso-fareast-language:EN-IN;text-decoration:none"><img border="0" width="25" height="28" style="width:.2604in;height:.2916in" id="Picture_x0020_2" src="cid:image003.jpg@01D547AB.E3A552A0" alt="T1"></span></a><a href="https://www.youtube.com/channel/UCiaKBJa35-V4UzV62__N2dA"><span style="font-family:"Cambria",serif;color:blue;mso-fareast-language:EN-IN;text-decoration:none"><img border="0" width="22" height="28" style="width:.2291in;height:.2916in" id="Picture_x0020_3" src="cid:image004.jpg@01D547AB.E3A552A0" alt="Y1"></span></a><a href="http://8kmiles.com/blog/"><span style="font-family:"Cambria",serif;color:blue;mso-fareast-language:EN-IN;text-decoration:none"><img border="0" width="25" height="28" style="width:.2604in;height:.2916in" id="Picture_x0020_4" src="cid:image005.jpg@01D547AB.E3A552A0" alt="B1"></span></a><a href="https://www.linkedin.com/company/8kmiles-software-services-ltd"><span style="font-family:"Cambria",serif;color:blue;mso-fareast-language:EN-IN;text-decoration:none"><img border="0" width="22" height="28" style="width:.2291in;height:.2916in" id="Picture_x0020_5" src="cid:image006.jpg@01D547AB.E3A552A0" alt="L1"></span></a><span style="font-size:12.0pt;font-family:"Times New Roman",serif;mso-fareast-language:EN-IN"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-IN" style="mso-fareast-language:EN-IN"><o:p> </o:p></span></p>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div style="background-color:#D5EAFF; border:1px dotted #003333; padding:.8em; ">
<p style="font-size:12pt; color:black; line-height:10pt; font-family: 'Cambria','times roman',serif;">
Disclaimer:This message and the information contained herein is proprietary and confidential and subject to the 8KMiles policy statement at https://8kmiles.com/Email-Disclaimer/.
</p>
</div>
</body>
</html>