tags:

views:

1193

answers:

5
+1  Q: 

Can Adobe AIR applications achieve SSO authentication against Active Directory?

I don't know much about AIR apps, but I like what I'm seeing so far. So now, I'm wondering if this type of app would make sense in the intranet at work.

Before I invest time and effort into ramping up on AIR development, I would like to know: is it possible for an AIR app on Windows to do single sign-on authentication against Active Directory? I'm thinking of maybe an AIR app that uses a logged on user's Windows credentials to connect to web services hosted on IIS with Windows auth turned on.

I know that IT security would get on my case if I rolled an app that makes a user enter a password. Any workaround that's not kludgy and accomplishes SSO with AD would be cool too.

A: 

Using AIR you can read files from the file system and you can open network connections, so that should get you somewhere.

What would the use of the SSO be? Describing a possible job that this AIR app should perform will help people to give a more helpful answer.

Simon Groenewolt  2009-01-31 21:08:00
I was hoping to have an AIR app connect using a logged on user's credentials to web services hosted on IIS that has Windows authentication turned on. For us, it's always a no-no to have users enter passwords into an app. Adobe seems to market to consumers not MS shops, so I figure it's a long shot.
barneytron  2009-01-31 23:31:35
Hmm, yes, I don't think AIR supports that. If are mainly interested in using flash/flex and not in AIR per se, you could try to create a hybrid application using Zinc or SWF Studio.
Simon Groenewolt  2009-02-01 11:01:51
+1  A: 

Definitely. If SSO works in IE it works in your AIR app. We are currently deploying an app that does just this.

AIR running on Windows will use the SSO settings from Internet Explorer. As long as your users can login with SSO in IE, they can do the same in AIR. This can be done with group policy settings pretty easily: add your site as an Intranet site, enable Integrated Windows Authentication, and you're good to go.

Haven't run into any problems so far. We've tested it with about 10 users. YMMV.

Charles Dale  2009-07-28 06:29:07
For David: You can't really pull the credentials per se - you just make the request and Windows does the SSO for you behind the scenes, if you're lucky and managed to get the right combination of IE settings and server auth setup.We use Apache on Linux so I can't really help with Windows Server details, although I'd imagine it's probably less painful when you've got both server and client inside Microsoft Camp.
Charles Dale  2009-09-09 07:09:33
A: 

Charles,

If you have an example of some code that pulls I.E. credentials, I would be really grateful to see it. I'm working on building a Flex app that accesses content on a SharePoint server that uses the active directory to authenticate permissions.

David  2009-08-24 22:46:43
A: 

Does somebody have sample code yet?

Memit

memit  2010-01-10 22:06:02
A: 

I have successfully setup Tomcat 6.0.26 running on CentOS 5.4 (Final) with Java 1.6.0_17-b04 using the SPNEGO servlet filter from spnego.sourceforge.net to automatically authenticate WindowsXP SP3 with IE 7.0 against a Windows 2003 R2 Active Directory domain. In addition, I have an Adobe AIR application developed for use on an intranet that can also authenticate via SPNEGO just like IE7.

Before getting Tomcat working on CentOS, I followed the "pre-flight checklist" and "install guide-tomcat" links at sourceforge.net to get Tomcat working with the SPNEGO filter on a Windows XP server. Once I got things setup so that IE could auto-authenticate, Adobe AIR just worked.

Once I had the username, I wrote some code to pull user groups from the AD LDAP. Helpful links for Java LDAP code may be found at starting at http://forums.sun.com/thread.jspa?threadID=726601.

5Refra8E  2010-09-09 16:18:51

related questions

How can I build an Adobe Air project with Maven?
Tips, Guides and/or Tutorials on writing a Windows desktop app for a PHP programmer by trade
How do I make a custom Flex component for a gap-fill exercise?
What are the print functions in Adobe AIR ?
How can I detect and invoke a user's local installation of the AIR runtime on a particular AIR application?
How do I unload a externally loaded SWF file from a SWFLoader component in Adobe Flex?
Can I generate a Flex web and Air desktop app from the same source code?
Is there another way to integrate PDF viewing in a Flex application?
How do I protect content in AIR?
Which plaform for a lightweight windows desktop app for internal use to run basic console commands (WPF, AIR, something else)?
E4X : Assigning to root node
Printing in Adobe AIR - Standalone PDF Generation
Best way to implement 1:1 asynchronous callbacks/events in ActionScript 3 / Flex / AIR?
Can the same Adobe AIR app run more than once?
Capturing Cmd-C (or Ctrl-C) keyboard event from modular Flex application in browser or AIR.
Adobe AIR: Handling JSON objects from server
How do I change the title bar icon in Adobe AIR?
Add a shortcut to Startup folder with parameters in Adobe AIR
How do I get rid of the "multiple describeType entries" warning?
Open local file with AIR / Flex
Flex / Air obfuscation
Can you access the windows registry from Adobe Air?
Adobe Air - Using multiple SQLite databases at once
Get the current logged in OS user in Adobe Air
Adobe air - SQLStatement.execute() - Multiple queries in one statement