Web Booster Enterprise Single Sign On 3.0.0

Single Sign On server for IBM WebSphere, Lotus Domino and Microsoft Windows workstations

webWise Network Consultants Pty Ltd Binary Code License Agreement READ THE TERMS OF THIS AGREEMENT AND ANY PROVIDED SUPPLEMENTAL LICENSE TERMS (COLLECTIVELY "AGREEMENT") CAREFULLY BEFORE OPENING THE SOFTWARE MEDIA PACKAGE. BY OPENING THE SOFTWARE MEDIA PACKAGE, YOU AGREE TO THE TERMS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL THESE TERMS, PROMPTLY RETURN THE UNUSED SOFTWARE TO YOUR PLACE OF PURCHASE FOR A REFUND OR, IF THE SOFTWARE IS ACCESSED ELECTRONICALLY, DO NOT DOWNLOAD THIS SOFTWARE. DOWNLOADING THIS SOFTWARE CONSTITUTUES ACCEPTANCE OF THIS AGREEMENT. 1. LICENSE TO USE. webWise grants you a non-exclusive and non-transferable license for the internal use only of the accompanying software and documentation and any error corrections provided by webWise (collectively "Software"), by the number of users and the class of computer hardware for which the corresponding fee has been paid. No fee is required to be paid if the software is used for non-Commercial purposes. 2. RESTRICTIONS. Software is confidential and copyrighted. Title to Software and all associated intellectual property rights is retained by webWise and/or its licensors. Except as specifically authorized in any Supplemental License Terms, you may not make copies of Software, other than a single copy of Software for archival purposes. Unless enforcement is prohibited by applicable law, you may not modify, decompile, or reverse engineer Software. You acknowledge that Software is not designed, licensed or intended for use in the design, construction, operation or maintenance of any nuclear facility. webWise disclaims any express or implied warranty of fitness for such uses. No right, title or interest in or to any trademark, service mark, logo or trade name of webWise or its licensors is granted under this Agreement. 3. LIMITED WARRANTY. webWise warrants to you that for a period of ninety (90) days from the date of purchase, as evidenced by a copy of the receipt, the media on which Software is furnished (if any) will be free of defects in materials and workmanship under normal use. Except for the foregoing, Software is provided "AS IS". Your exclusive remedy and webWise's entire liability under this limited warranty will be at webWise's option to replace Software media or refund the fee paid for Software. 4. DISCLAIMER OF WARRANTY. UNLESS SPECIFIED IN THIS AGREEMENT, ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT THESE DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. 5. LIMITATION OF LIABILITY. TO THE EXTENT NOT PROHIBITED BY LAW, IN NO EVENT WILL WEBWISE OR ITS LICENSORS BE LIABLE FOR ANY LOST REVENUE, PROFIT OR DATA, OR FOR SPECIAL, INDIRECT, CONSEQUENTIAL, INCIDENTAL OR PUNITIVE DAMAGES, HOWEVER CAUSED REGARDLESS OF THE THEORY OF LIABILITY, ARISING OUT OF OR RELATED TO THE USE OF OR INABILITY TO USE SOFTWARE, EVEN IF WEBWISE HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. In no event will webWise's liability to you, whether in contract, tort (including negligence), or otherwise, exceed the amount paid by you for Software under this Agreement. The foregoing limitations will apply even if the above stated warranty fails of its essential purpose. 6. Termination. This Agreement is effective until terminated. You may terminate this Agreement at any time by destroying all copies of Software. This Agreement will terminate immediately without notice from webWise if you fail to comply with any provision of this Agreement. Upon Termination, you must destroy all copies of Software. 7. Export Regulations. All Software and technical data delivered under this Agreement are subject to Australian export control laws and may be subject to export or import regulations in other countries. You agree to comply strictly with all such laws and regulations and acknowledge that you have the responsibility to obtain such licenses to export, re-export, or import as may be required after delivery to you. 8. U.S. Government Restricted Rights. If Software is being acquired by or on behalf of the U.S. Government or by a U.S. Government prime contractor or subcontractor (at any tier), then the Government's rights in Software and accompanying documentation will be only as set forth in this Agreement; this is in accordance with 48 CFR 227.7201 through 227.7202-4 (for Department of Defense (DOD) acquisitions) and with 48 CFR 2.101 and 12.212 (for non-DOD acquisitions). 9. Governing Law. Any action related to this Agreement will be governed by New South Wales law and controlling Australian federal law. No choice of law rules of any jurisdiction will apply. 10. Severability. If any provision of this Agreement is held to be unenforceable, this Agreement will remain in effect with the provision omitted, unless omission would frustrate the intent of the parties, in which case this Agreement will immediately terminate. 11. Integration. This Agreement is the entire agreement between you and webWise relating to its subject matter. It supersedes all prior or contemporaneous oral or written communications, proposals, representations and warranties and prevails over any conflicting or additional terms of any quote, order, acknowledgment, or other communication between the parties relating to its subject matter during the term of this Agreement. No modification of this Agreement will be binding, unless in writing and signed by an authorized representative of each party. SUPPLEMENTAL LICENSE TERMS These supplemental license terms ("Supplemental Terms") add to or modify the terms of the Binary Code License Agreement (collectively, the "Agreement"). Capitalized terms not defined in these Supplemental Terms shall have the same meanings ascribed to them in the Agreement. These Supplemental Terms shall supersede any inconsistent or conflicting terms in the Agreement, or in any license contained within the Software. 1. Software Internal Use and Development License Grant. Subject to the terms and conditions of this Agreement, including, but not limited to Section 2 (Puakma Technology Restrictions) of these Supplemental Terms, webWise grants you a non-exclusive, non-transferable, limited license to reproduce internally and use internally the binary form of the Software complete and unmodified for the sole purpose of designing, developing and testing your applications intended to run on the Puakma platform ("Programs"). 2. Puakma Technology Restrictions. You may not modify the Puakma Platform Interface ("PPI", identified as classes contained within the "puakma" package or any subpackages of the "puakma" package), by creating additional classes within the PPI or otherwise causing the addition to or modification of the classes in the PPI. In the event that you create an additional class and associated API(s) which (i) extends the functionality of the Puakma platform, and (ii) is exposed to third party software developers for the purpose of developing additional software which invokes such additional API, you must promptly publish broadly an accurate specification for such API for free use by all developers. You may not create, or authorize your licensees to create, additional classes, interfaces, or subpackages that are in any way identified as "puakma", "webWise" or similar convention as specified by webWise in any naming convention designation. 3. Notice of Automatic Software Updates from webWise. You acknowledge that the Software may automatically download, install, and execute applets, applications, software extensions, and updated versions of the Software from webWise ("Software Updates"), which may require you to accept updated terms and conditions for installation. If additional terms and conditions are not presented on installation, the Software Updates will be considered part of the Software and subject to the terms and conditions of the Agreement. 4. Notice of Automatic Downloads. You acknowledge that, by your use of the Software and/or by requesting services that require use of the Software, the Software may automatically download, install, and execute software applications from sources other than webWise ("Other Software"). webWise makes no representations of a relationship of any kind to licensors of Other Software. TO THE EXTENT NOT PROHIBITED BY LAW, IN NO EVENT WILL WEBWISE OR ITS LICENSORS BE LIABLE FOR ANY LOST REVENUE, PROFIT OR DATA, OR FOR SPECIAL, INDIRECT, CONSEQUENTIAL, INCIDENTAL OR PUNITIVE DAMAGES, HOWEVER CAUSED REGARDLESS OF THE THEORY OF LIABILITY, ARISING OUT OF OR RELATED TO THE USE OF OR INABILITY TO USE OTHER SOFTWARE, EVEN IF WEBWISE HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. 5. Trademarks and Logos. You acknowledge and agree as between you and webWise that webWise owns the brand designations ("webWise Marks"), and you agree to comply with the webWise Trademark and Logo Usage Requirements. Any use you make of the webWise Marks inures to webWise's benefit. 6. Source Code. Software may contain source code that is provided solely for reference purposes pursuant to the terms of this Agreement. Source code may not be redistributed unless expressly provided for in this Agreement. 7. Termination for Infringement. Either party may terminate this Agreement immediately should any Software become, or in either party's opinion be likely to become, the subject of a claim of infringement of any intellectual property right. For inquiries please contact: webWise Network Consultants Pty Ltd, Australia. info@wnc.net.au +61 2 9687 5456

View Full Changelog

Change ssl client to default to "TLSv1.2" rather than "SSL"

Now works with NTLMv2, the default used by Windows 7 workstations and Windows 2008 servers

An optimization was added to booster ESSO a while back that checked the booster session id: > _pma_sess_id=2-11AD96187BA-11AD9662D5F; To determine if authentication should reoccur. If there is a valid bootser esso session, then skip the authentication. IE kills this optimization, because the ltpa token is valid and the booster session is valid BUT it sends Content-length: 0 and and Authorization: headers. We have removed the booster session checking. This means that every request will require the small overhead of reparsing all the cookies. see: http://blogs.msdn.com/david.wang/archive/2005/12/01/HTTP-POST-Fails-for-Anonymous-Authentication.aspx

Added code to always remove the "Authorization:" http header so no remnants of the NTLM/SPNEGO handshake is passed to the backend server. This was causing a problem for IIS as IIS was attempting to process the handshake itself. This issue only occurred for IE browsers POSTing data as IE would include the last part of the handshake again in the final POST.

Fixed a regression bug introduced during the implementation of SPNEGO/Kerberos authentication. The issue is internet explorer sends a POST with content length of zero along with a new authentication. The old code was ignoring this re-authentication. For more information on the IE6 behaviour, please see http://www.websina.com/bugzero/kb/browser-ie.html


		Web Booster Enterprise Single Sign On webWise Network Consultants