Authentication and single sign-on are handled by JBoss AS (and Tomcat). You should review the JBoss App. Server Guide - the chapter on security (Chapter 8). JBoss provides login modules for LDAP, databases, flat files, etc... you can use one of those or roll your own using JAAS. The single sign-on setting is made by modification of the Tomcat-SAR's server.xml file. The portal, for the most part, is an application running within JBoss and Tomcat and inherits the authentication/SSO attributes of the the server via the HttpServletRequest methods:
| getRemoteUser() | getUserPrincipal() | isUserInRole(String role) | View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3900873#3900873 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3900873 ------------------------------------------------------- This SF.Net email is sponsored by: Power Architecture Resource Center: Free content, downloads, discussions, and more. http://solutions.newsforge.com/ibmarch.tmpl _______________________________________________ JBoss-user mailing list JBoss-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-user