A Forum reader asked the following question:
We now have IChain working in which a general login page appears when trying to access secure web resources.
However, we have an outside system where we would like to gracefully log them in without the knowledge or the necessity of passing by the HTML form, where we must enter the login and password.
I have seen the action path and the parameters to pass as a URL rewrite but it does not seem to work. Here is my URL:
Is there something I am missing, or am I trying to do something which is not possible?"
And here's a suggestion from Tim Loveridge ...
The iChain authentication process requires that you POST the data rather than GET it. I'm curious as to how blind authentication to a "Restricted" or "Secure" site is beneficial, as that essentially turns it into a "Public" site, but I suppose you could come up with some creative reasons ...
Anyway, if you wanted, you could have a page (accessible internally only of course...) that automatically logs a user in to iChain. Take the following HTML source:
<title>Auto-Login to www.mysite.com</title>
<form name="loginform" method="POST"
<input type="hidden" name="username" value="username">
<input type="hidden" name="password" value="password">
<input type="hidden" name="url" value="https://www.mysite.com/mywebapp/">
<input type="hidden" name="proxypath" value="reverse">
When this page loads, the browser will automatically post the loginform data to the iChain login processor, then upon successful login, redirect the user to the specified URL. It's a slightly different solution, but achieves the same end result.
Disclaimer: As with everything else at Cool Solutions, this content is definitely not supported by Novell (so don't even think of calling Support if you try something and it blows up).
It was contributed by a community member and is published "as is." It seems to have worked for at least one person, and might work for you. But please be sure to test, test, test before you do anything drastic with it.