If you have "different sites" under the same webserver installation then sharing the authentication information between cocoon apps should be ok.
If each cocoon app is under its own webserver installation then sharing information like user authentication become more problematic. Now you have to store this information in a central location and use something like SOAP to access the information through a service. Nick Frangos -----Original Message----- From: Oscar Picasso [mailto:[EMAIL PROTECTED] Sent: Wednesday, 27 October 2004 4:04 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: Sharing sessions and authentication across sites Thanks for the idea. Actually I don't use apache httpd, but something that should behave similarly I think. I have only one servlet webapp (actually the cocoon instance) which already serves the requests to the different sites. The problem is that, even if the different sites are served by the same servlet, the session and authentication is lost while going from one site to another. It seems that the session scope remains inside a requested site. By the way, if I use cookies to keep track of the session I notice that the session id depends on the requested site (one site cannot read the cookie from another site). So I don't see how the session could be shared either with my actual configuration or with your proposal. Did I misunderstood what you wrote? > Use Apache httpd in front of your servlet engine and have mod_proxy pipe > the requests from httpd to 1 servlet webapp. The session can remain in > Tomcat while Cocoon uses different stylings or sub sitemaps. > > Just a thought. > > Bert __________________________________ Do you Yahoo!? Yahoo! Mail Address AutoComplete - You start. We finish. http://promotions.yahoo.com/new_mail --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
