I’m looking for ways to integrate an OpenID based SSO solution properly in the CMS. Now, everything almost runs smoothly, by creating a custom DelegateSecurityProvider linking up with the SSO endpoints to actually obtain a token on (manual) login.
However, for 1) subsequent visits or 2) initial visits to the CMS (having a valid token), I’m building an SSO Servlet Filter to decode/verify my token and, if it is valid, perform an automatic login in the CMS with a given user.
I only see functionality to perform logins when there’s an actual Wicket Session / Wicket context set up etc. However, in my filter (which has to kick in before the Wicket CMS application is firing up) I don’t have a Wicket Session / Wicket context.
Is there a way to actually programmatically perform the login and/or provision credentials to the Wicket Session / Wicket context which is set up after? Or should my filter set all the JEE Principals manually according to what BrXM is expecting. Any pointers?