Single Sign-on Login Sample Module (SiteMinder)
When a valid SiteMinder user enters TIBCO MDM url, it is redirected to the SiteMinder login screen. The login credentials are authenticated by SiteMinder.
If the authentication is successful, user is redirected to login to TIBCO MDM. The following diagram depicts the workflow of the SiteMinder configuration:
The user attempts to access the protected resource.
The user is challenged and provides credentials to the SiteMinder agent or SiteMinder Proxy Server.
The user credentials are passed to the SiteMinder Policy Server.
The user is authenticated against native user stores.
The SiteMinder Policy Server evaluates the user authorization and grants access.
The user profile and entitlements are passed to the application.
The application serves customized content to the user.
The SiteMinder module is handled through com.tibco.mdm.directory.security.SMLoginModule Java class and the user is validated using validateLoginDetails method.