Hi,
What we need at our site is an interceptor intercepts requests to multiple web
applications. This in combination with the SSO feature of tomcat so that we
don't have to build a login screen for every application we deploy.
I have the assignment to build this component for our department bec
Re: the feature request to add a sharable session type, Chris informed me the
JIRA issue I referenced wasn't public (thanks, Chris!). I've created a new
public JIRA issue for the same thing:
http://jira.jboss.com/jira/browse/JBAS-2861 .
View the original post :
http://www.jboss.com/index.html
There's an open JIRA task for adding a sharable session type: see
http://jira.jboss.com/jira/browse/JBAS-1909
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3926320#3926320
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=
Dear gang,
I have recently completed some work in this area that may be of interest. In
my environment, users can be authenticated (in the web domain) by the presence
of a specific cookie generated by an centralized authentication web application
(i.e. the IDP). I had no involvement in develo
Hello:
We had come across multipe times for the need for session sharing among
multiple web apps (usually modules of the same app in separeate wars in same
ear). If this feature is present as a configurable item, then it will be very
useful.
thanks and regards,
-- Kannan.
View the original p
David, no question of hijacking the thread.
True ubiquitous comprehensive authorization framework is difficult to achieve.
Policy based architecture is just one way towards that goal. Most probably we
will go the XACML way.
Given this, I am interested in seeing what 3rd party software JBoss use
Brian, this is great news. I'll keep a lookout for the next jBoss release.
Anil, sorry for hijacking your thread. I have used SiteMinder and I can safely
say that I MUCH prefer jBoss's authenitcation/authorization mechanism. It is
simple to configure (without all the SiteMinder policy files) and
"david.l.small" wrote : Brian, if there is a way I can help, I'd be more than
happy to do so.
Thanks much for the offer!
Just checked the Tomcat code and it looks like the needed patch was implemented
in 5.5.13. (See http://issues.apache.org/bugzilla/show_bug.cgi?id=34724).
5.5.12 is the last
General Question for everyone:
What Identity Management solutions do you currently use? Siteminder?
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3917382#3917382
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3917382
Brian, if there is a way I can help, I'd be more than happy to do so.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3917351#3917351
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3917351
---
To allow your use case of abc.sample.com and xyz.sample.com requires a simple
change to Tomcat's AuthenticatorBase class -- the addition of an
"ssoCookieDomain" property that if set would override the current "/" domain
with "sample.com". This property would best be set in the SingleSignOn valv
Our team's main need is really an enhancement to jBoss's existing SSO, that is
to handle SSO across multiple hosts on the same domain. A simple example would
be abc.sample.com and xyz.sample.com. I understand that JOSSO is capable of
this, but it does not appear that it works with 4.0.3 as of ye
I have an external authentication through Apache using the spnego protocol
(automatic authentication with Kerberos of a user that uses Internet Explorer
inside an Active Directory Domain). I need to create the user principal using
the REMOTE_USER http request header supplied by apache.
View th
13 matches
Mail list logo