[ https://issues.apache.org/jira/browse/OFBIZ-10047?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16294138#comment-16294138 ]
James Yong commented on OFBIZ-10047: ------------------------------------ Hi Michael, Thanks for the review. #2: During runtime, OFBiz checks username exists before running OFBizRealm#getPassword. Will add the extra check. #3: Only implemented the abstract methods. Should be easy to update when upgraded to Tomcat 9. #4: Right. Will change. #6: The sign-on mechanism will use following order of precedence: 1. CAS SSO, Authenticators (LinkedIn, Github), Tomcat SSO, OFBiz’s internal. 2. So if we have all of the above implemented, CAS SSO will be used. > Tomcat SSO > ---------- > > Key: OFBIZ-10047 > URL: https://issues.apache.org/jira/browse/OFBIZ-10047 > Project: OFBiz > Issue Type: Improvement > Components: framework > Affects Versions: Trunk > Reporter: James Yong > Assignee: James Yong > Priority: Minor > Attachments: OFBIZ-10047.patch, OFBIZ-10047.patch, OFBIZ-10047.patch, > OFBIZ-10047.patch > > > Proposing Tomcat SSO to be used in OFBiz to improve on Single-Sign-On. > This aim to fix the issues mentioned in OFBIZ-6963, OFBIZ-6994. -- This message was sent by Atlassian JIRA (v6.4.14#64029)