This example implements a Mock Authentication Service to be used with Server Side Trusted Ticket Agent for Tableau (https://github.com/geordielad/ttproxy.git).
The example configuration below should work on a non-SSL enabled Tableau Server with this Mock Authentication Server, and the Trusted Ticket Agent, all on localhost. You do not need an external Access Management System. By deploying the various components on separate server and setting the config options appropriately you should be able to integrate this package in more complex environments.
This example comes with the ability to encrypt the username when passing it from the mock-auth-server to ttproxy. This functionality uses an RSA Public/Private key encryption/decryption package called URSA (See https://github.com/quartzjer/ursa). The package.json, requires and config.js by default are set up not to require a successful URSA install. If you do want username encryption then you will need to configure your system so that URSA is successfully installed then you can change the encUsernameFlag in config.js on both packages.
$ git clone https://github.com/geordielad/tt-mock-auth-server.git
$ cd tt-mock-auth-server
$ npm install # Assumes ursa can build successfully
$ # Make changes to config.js as needed. Add SSL key/cert if needed. Enable Encryption of username
$ npm start- Install this package and https://github.com/geordielad/ttproxy.git
- Enable Unrestricted Trusted Tickets on Tableau Server and configure trust and gateway settings
tabadmin stop
tabadmin set wgserver.unrestricted_ticket true
tabadmin set gateway.trusted 127.0.0.1
tabadmin set gateway.public_host localhost
tabadmin set gateway.public_port 8000
tabadmin set wgserver.trusted_hosts "127.0.0.1"
tabadmin config
tabadmin start- Create a user (default is [email protected]) on Tableau or edit config.js to use another user.
- Configure port and hostname settings for Proxy and Auth Server
- Sample assumes http, localhost (for all Tableau, Proxy and Auth Server) and 8000 for the proxy and 8080 for the auth server.
- In a command window
cd tt-mock-auth-server
npm start- In another command window
cd ttproxy
npm start- In your web browser go to proxy server public address (e.g. http://localhost:8000)
module.exports = {
name: 'Trusted Ticket Mock Authentication Server',
protocol: process.env.PROTOCOL || 'http', // http or https
sslKeys: {
key: '.ssl/private-ssl-key.key',
cert: '.ssl/public-ssl-cert.pem'
},
port: process.env.PORT || 8080, // Any available port
encUsernameFlag: false,
encKeys: {
key: '.enc/private-enc-key.key',
cert: '.enc/public-enc-cert.pem'
},
tableauUsername: '[email protected]'
}; |
|---|
| @geordielad |
This example is made available AS-IS with no support and no warranty whatsoever. The software is strictly “use at your own risk.”
The good news: You are free to modify it in any way to meet your needs, or use it as the basis for your own implementation.
Licensed under the MIT license