Red Hat Single Sign-On Integration Read Me

Red Hat JBoss BPM Suite 6.3

The Red Hat Single Sign-On Integration Guide for Red Hat JBoss BPM Suite

Red Hat Content Services

Klara Kufova

Marek Czernek

Tomas Radej

Vidya Iyengar

Abstract

A guide for administrators and developers who want to integrate Red Hat JBoss BPM Suite with Red Hat Single Sign-On.

Chapter 1. Introduction

Red Hat Single Sign-On (RH-SSO) is an integrated Single Sign-On solution (SSO) and supports both OpenID Connect and SAML v2.
RH-SSO is an authentication server for web applications, mobile applications and RESTful web services, where users can manage their user accounts. The RH-SSO administration UI can manage roles and role mappings for any application secured by RH-SSO. You can use the RH-SSO server to perform social logins using social media sites, such as Google, Facebook, Twitter, and others.

1.1. Integrating with Red Hat JBoss BPM Suite

By integrating with Red Hat JBoss BPM Suite, you gain additional supported features. For example:
  • Centrally managed user and role mapping metadata. Minimal configuration required at the application side.
  • Administrator console for managing users, roles, role mappings, applications, and user sessions.
  • Revocation policies.
  • Password policies.
Additional features to gain support after the Red Hat Single Sign-On GA include, for example:
  • OpenID Connect, SAML 2.0 Single Sign-On, and Single Log Out services for your browser applications.
  • Social Broker – Enable Google, Facebook, Yahoo, or Twitter social login service with no code required.
  • Identity Broker – Delegate to an external SAML 2.0 or OIDC broker for authentication.
  • Optional LDAP/Active Directory integration.
  • Optional User Registration, with optional re-captcha ability.
  • Password and time-based one-time password (TOTP) support (through Google Authenticator). Authentication through client certification is coming soon.
  • User session management from both administrator and user perspectives.
  • Customizable themes for user pages – login page, account management, emails, or administrator console are fully customizable.
  • OAuth 2.0 Bearer token authentication for REST Services.
  • Integrated browser application for REST Service token propagation.
  • Cross-origin resource sharing (CORS) Support.
  • Deployable as a WAR, appliance, or an Openshift cloud service (SaaS).
  • HTTP security proxy for environments, platforms, and languages that do not have a client adapter.
  • Javascript/HTML 5 adapter for pure Javascript applications.
  • Session management from administrator console.
  • Claim and assertion mappings. Your tokens and assertion XML is fully customizable.
  • Impersonation – Allow your administrators to impersonate a user to troubleshoot.

1.2. Further Information

For further information about Red Hat Single Sign-On, follow these guides:
For further information about Red Hat JBoss BPM Suite integration with Red Hat Single Sign-On, see Chapter 11. Integrating Red Hat JBoss BPM Suite with Red Hat Single Sign-On of the Red Hat JBoss BPM Suite Administration and Configuration Guide [single-page HTML] [multi-page HTML] [pdf] [epub] .

Appendix A. Revision History

Revision History
Revision 6.3.0-6Mon Dec 5 2016Tomas Radej
Fixed links.
Revision 6.3.0-5Thu Aug 4 2016Tomas Radej
Removed supportability statement.
Revision 6.3.0-4Thu Jun 2 2016Marek Czernek
Releasing the newest documentation.
Revision 6.3.0-3Thu May 5 2016Marek Czernek
Initial build for release 6.3.0 of JBoss BPM Suite.

Legal Notice

Copyright © 2016 Red Hat, Inc.
This document is licensed by Red Hat under the Creative Commons Attribution-ShareAlike 3.0 Unported License. If you distribute this document, or a modified version of it, you must provide attribution to Red Hat, Inc. and provide a link to the original. If the document is modified, all Red Hat trademarks must be removed.
Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law.
Red Hat, Red Hat Enterprise Linux, the Shadowman logo, JBoss, OpenShift, Fedora, the Infinity logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries.
Linux® is the registered trademark of Linus Torvalds in the United States and other countries.
Java® is a registered trademark of Oracle and/or its affiliates.
XFS® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
MySQL® is a registered trademark of MySQL AB in the United States, the European Union and other countries.
Node.js® is an official trademark of Joyent. Red Hat Software Collections is not formally related to or endorsed by the official Joyent Node.js open source or commercial project.
The OpenStack® Word Mark and OpenStack logo are either registered trademarks/service marks or trademarks/service marks of the OpenStack Foundation, in the United States and other countries and are used with the OpenStack Foundation's permission. We are not affiliated with, endorsed or sponsored by the OpenStack Foundation, or the OpenStack community.
All other trademarks are the property of their respective owners.