I am using Tomcat 5.0.1 and I have two web apps that I manage that have the same user authentication. I would like to use single signon. However, when I configure the single signon valve in the server.xml file and move my realm from my app.xml files to the server.xml file, I can no longer access the manager app I've signed on to my other applications because it uses a different authentication. The comment in the server.xml file states that all apps must have the same authentication if single signon is configured. If I change the manager app to have the same authentication as the other two apps, then I think that all my users could also get into the manager app with their standard authentication which I do not want to happen. Can I configure Tomcat somehow so that I can have single signon without losing the convenience of having the manager app available only to the web administrators?
Any help would be appreciated.
