I am migration application from siteminder to shibboleth. So I have to check the application code where all siteminder is used in the code and where I need to make changes. I am new to siteminder and Shibboleth. I need a way to check where siteminder authentication is being used in my application code part. My application is PHP bases application and uses IIS server where siteminder is installed.
How to check where in the application code Siteminder is used?
314 Views Asked by Sagar Samal At
1
There are 1 best solutions below
Related Questions in PHP
- How to add the dynamic new rows from my registration form in my database?
- Issue in payment form gateway
- How to create a facet for WP gridbuilder that displays both parent and child custom fields?
- Function in anonymous Laravel Blade component
- How to change woocomerce or full wordpress currency with value from USD to AUD
- General questions about creating a custom theme Moodle CMS
- How to add logging to an abstract class in php
- error 500 on IIS FastCGI but no clue despite multiple error loggings activated
- Composer installation fails and reverts ./composer.json and ./composer.lock to original content
- How to isolate PHP apps from each other on a local machine(Windows or Linux)?
- Laravel: Using belongsToMany relationship with MongoDB
- window.location.href redirects but is causing problems on the webpage
- Key provided is shorter than 256 bits, only 64 bits provided
- Laravel's whereBetween method not working with two timestamps
- Implementing UUID as primary key in Laravel intermediate table
Related Questions in IIS
- error 500 on IIS FastCGI but no clue despite multiple error loggings activated
- IIS Rewrite Module exclude bots but allow GoogleBot
- How to deploy angular 17 SSR into IIS
- IIS web site with httpplatformhandler on specific route does not redirect to the nextjs site
- Why is 'EDITBIN /STACK:2097152 w3wp.exe' cmd is giving me an LNK1342 error?
- Primeng Angular styles on subdomain don't work
- Apps migrated from IIS server1 to another IIS server2 stopped communicating with an App on IIS server 1 via SSL (HTTPS)
- How to authenticate with REST API service on IIS using pass-through authentication in Python?
- ASP.NET Core 8 is missing from application pool selection after install
- Azure Application Gateway ByPass
- SSL certificate is installed on iis and website but in browser is unknown
- Redirect to another site but show the original URL in browser
- Problem in hosting React App with react-router-dom on IIS Server
- Django Channels on IIS
- ASP.NET Core/Angular17 application files does not load when published in IIS
Related Questions in SINGLE-SIGN-ON
- Generate Databricks personal access token using REST API
- Allow external users to login using custom SAML app in Google Admin
- Handling errors in MSAL Redirect - reactjs login with microsoft sso
- How would single sign-on work for my multi-tenant application?
- How can we make an environment specific Token-based authorization using Ping Token?
- Is it possible to integrate Looker Studio with websites without keeping it public, to preserve data?
- OKTA SSO Driven API Invocation
- Is there any way to login SSO using RestAssured or using any API calls?
- Is it possible to interact with SSO between Website A and Website B?
- SSO to Grafana embeded in iframe
- Secure React App and .net 6 apis with Keycloack
- Integrating one tap sign in with phone from phone email - Converting html and javascript code to React JS
- I need SSO and Maven to work together in a Tomcat 9 Eclipse project, I have check the usual suspects but I think I missed something
- Firebase Authentication SAML resource metadata file
- How to add ForceAuthn flag on AWS cognito
Related Questions in SITEMINDER
- Issues with load balancer with siteminder login issue
- SM Session Authentication issue from Site Minder getting HTML Login Page
- unable to flush/delete cookie after each request
- OAuth2 client - redirect url not allow localhost
- Siteminde policy serveur capacity
- UI application is not opening with VIP URL but UI application is working as expected with Apache HTTPD URL
- How to retrieve SSO CA Siteminder's headers from Spring + React application
- Siteminder Authentication in Single Page Application
- ca siteminder saml sso proxyrule namespace case can not forward
- How to do a logout from SiteMinder session for a Pivotal Cloud Foundry hosted JSP/Servlet application?
- Siteminder and SameSite Cookie attribute
- VBA and Excel: surfing a site bypassing authentication protected by Siteminder
- What will be the Entity ID for my 1 IIS server hosting 2 websites?
- How do I create Request-Header Authentication (Siteminder) java config class
- URL fragment removed by IE after 302 login redirect
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Usually for webapplication there is no code required for siteminder protection. You setup policies at police decision point, which is your siteminder policy server and your police enforcement point is your webagent which sits on webserver. The only code you might see in your application is where you app reads the response headers. But that will not give you understanding of which application is protected by siteminder.
Your best bet would be to check the policy server. If you have too many domains and apps than you are out of luck. If your policy server is database and you have understanding of siteminder db schema, you may be able to run some complex join queries to produce the report. I have done that in past with success. If you don't know the db schema or your policy server db is ldap, then you may be able to use api to produce some reports.
But net-net, it's not applications that gives you this information. You will get this information only from policy server or policy store.
I see why you are asking this question the way you are asking. Shibolleth and Siteminder does not work the same way. Shibboleth is policy decision point and you have to write a connector in your app to read the policy decision from shibolleth and enforce it in your app. That is not how siteminder works. Not atleast the standard apps. If you have SAML or OpenID with siteminder then it's different story. Either way, policy server is the place to look into.
Recently I migrated from siteminder 6.x to 12.8 with close to 4000 urls and 400 applications. First thing you need to do is to produce a report from policy server about what is protecting which urls.