Howto redirect all authenticated users to one page regardless of protected resource accessed

  • 7001479
  • 02-Oct-2008
  • 26-Apr-2012

Environment

Novell Access Manager 3 Linux Access Gateway
Novell Access Manager 3 Linux Novell Identity Server
Novell Access Manager 3 Support Pack 4 applied

Situation

Customer creating custom login pages that must modify the requested url. The documentation indicates that an optional destination URL can be used by creating a hidden input field in the login form of the customised jsp page called "target". An example would look like:

      <td><input type="hidden" name="target" id="target" value="https://www.novell.com"></td>

This works fine when the users authenticate to the Identity (IDP) server directly - they submit their credentials and get redirected to the target URL. In the case where the user initially accesses an Access Gateway (AG) enabled protected resource, users are always redirected back to the original protected resource URL after authentication and not the target defined URL.

Resolution

Apply Access Manager 3 Support Pack 4 Interim Release 1 and modify the customised login page to include the "ctarget" hidden parameter. This ctarget parameter is used in the case where the Liberty Authentication request coming into the IDP server is from the Access Gateway, and not a workstation directly. Simply specify the redirect URL in the value field (similar to the target example above).

Additional Information

The "ctarget" parameter does not work in Access Manager versions 3.1, 3.1 IR1, or 3.1 IR2.  An internal fix is available if needed.  Contact Novell Technical Support for details.

Feedback service temporarily unavailable. For content questions or problems, please contact Support.