uCosminexus Application Server, Security Management Guide

[Contents][Index][Back][Next]

5.12.3 Defining DD when using the session failover functionality

The session failover functionality in integrated user management can be enabled by adding the filter definition to DD (web.xml).

This section introduces GSInfoKey-RW (the read-only information used as the global session information) and GSInfosLengthMax (the maximum size of the global session information), which must be defined to use the session failover functionality.

Organization of this subsection
(1) Defining GSInfoKey-RW (integrated user management and the session failover functionality)
(2) Defining GSInfosLengthMax (integrated user management and the session failover functionality)
(3) Example of defining DD (integrated user management and the session failover functionality)

(1) Defining GSInfoKey-RW (integrated user management and the session failover functionality)

The following package should be defined.

com.cosminexus.admin.auth.user_data

(2) Defining GSInfosLengthMax (integrated user management and the session failover functionality)

Calculate the value used in integrated user management by using any of the following formulas, and define the value derived by adding this to the value used by the application. The fixed values such as 1,500 and 1,200 in the formulas are necessary to save the integrated user management information.

Example of calculating GSInfosLengthMax used in integrated user management

Conditions
  • API is used.
  • The password save functionality is not used.
  • The length of realm names is 10 characters.
  • The maximum length of user names is 20 characters.
  • The number of single sign-on systems (realms) is 3.

Formula
{1,500 + (10 + 20 + 1,200) x 3} x 2=10,380

If value is not correctly defined, the session failover functionality will not work properly.

To disable the session failover functionality in integrated user management when using the session failover functionality, change the settings in the integrated user management configuration file (ua.conf). For details about the integrated user management configuration file, see 14.3 ua.conf (integrated user management configuration file).

(3) Example of defining DD (integrated user management and the session failover functionality)

The following is an example of defining DD when using the session failover functionality in integrated user management.

   :
<filter>
    <filter-name>com.hitachi.software.was.sfo.web.SFOFilter</filter-name>
    <filter-class>com.hitachi.software.was.sfo.web.SFOFilter</filter-class>
    <init-param>
        <param-name>GSInfoKey-RW</param-name>
        <param-value>com.cosminexus.admin.auth.user_data</param-value>
    </init-param>
    <init-param>
        <param-name>GSInfoKey-R</param-name>
        <param-value></param-value>
    </init-param>
    <init-param>
        <param-name>GSInfosLengthMax</param-name>
        <param-value>10380</param-value>
    </init-param>
    <init-param>
        <param-name>SFOServerName</param-name>
        <param-value>sfo_server1</param-value>
    </init-param>
    <init-param>
        <param-name>GIDCookieName</param-name>
        <param-value>GSESSIONID</param-value>
    </init-param>
    <init-param>
        <param-name>LockTimeout</param-name>
        <param-value>30</param-value>
    </init-param>
</filter>
   :

[Contents][Back][Next]

[Trademarks]

All Rights Reserved. Copyright (C) 2013, Hitachi, Ltd