RE: Native OS authentication using single sign on ...
On Tue, 30 Jul 2002, Michael Remijan wrote: > Date: Tue, 30 Jul 2002 15:46:43 -0500 > From: Michael Remijan <[EMAIL PROTECTED]> > Reply-To: Tomcat Users List <[EMAIL PROTECTED]> > To: Tomcat Users List <[EMAIL PROTECTED]> > Subject: RE: Native OS authentication using single sign on ... > > I've been following these posts closely because I want to do basically > the same thing as well. My stupid question is what happens after you > submit the form?? What I would like to do is create an Object and put > it in the users session. However, if the user goes click on a link that > takes them to another webapp, will the object that I put in the session > still be available?? Single Sign On is great but if I can't passes a > shared object around via the session (or some other technique) it > doesn't do me any good. > Single sign on avoids the need for a user to authenticate himself or herself to multiple apps. It does not cause any sharing of sessions -- in fact, the user will have a separate session for each app that they are actually using. Sharing information between webapps is not affected in the slightest by single sign on's use. > Mike Craig -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
RE: Native OS authentication using single sign on ...
I've been following these posts closely because I want to do basically the same thing
as well. My stupid question is what happens after you submit the form?? What I would
like to do is create an Object and put it in the users session. However, if the user
goes click on a link that takes them to another webapp, will the object that I put in
the session still be available?? Single Sign On is great but if I can't passes a
shared object around via the session (or some other technique) it doesn't do me any
good.
Mike
-Original Message-
From: HAVENS,PETER (HP-Cupertino,ex3) [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 30, 2002 1:53 PM
To: '[EMAIL PROTECTED]'
Subject: Native OS authentication using single sign on ...
I am currently trying to authenticate multiple webapps under a single
authentication mechanism. That is login once and you can access all of the
webapps under a given virtual host. I have enabled single sign on in the
server.xml file and I have added a and
in my conf/web.xml file. Everything is working great and it is
authenticating users against the conf/tomcat-users.xml file.
Now I want to take the next step to do native OS authentication using a JNI
to a C or C++ module that uses PAM. How do I change my login.jsp page
pointed to by the to call a bean instead of just
authenticating against the tomcat-users.xml?
Any input would be greatly appreciated. I have included part of my
conf/web.xml and my login.jsp.
Thanks in advance.
-Peter
--Portion of conf/web.xml-
Gryphon Authentication
Protected Area
/*
GET
DELETE
POST
PUT
*
FORM
Gryphon Form-Based Authentication
/login.jsp
/error.jsp
end of conf/web.xml
login.jsp-
Login Page
Username:
Password:
<%
if ( ! request.isSecure() )
{
// Forward to a secure page
String sslURL = "https://"; + request.getServerName() + ":1188" +
request.getRequestURI();
%>
WARNING: This is a non-secure page!
Click here to use SSL.
<%
}
%>
--
To unsubscribe, e-mail:
For additional commands, e-mail:
