Hi,
I have already enabled the SSO function in server.xml. It could be
promoted the challenge once when I visit the first webapp and without
login to all the webapps in the host. But I do not want any login form
promoted to users. So my point is, how do I write code in a jsp or
servlet to auto login to the first webapp without the login-form
promoted to users.
For example, in websphere application server, the following code
could be auto login to the server, If we give the right username and
password pair.
code begin
------------------
LoginContext lc = null;
try {
lc = new LoginContext("WSLogin",
new WSCallbackHandlerImpl("userName", "password"));
} catch (LoginException le) {
System.out.println("Cannot create LoginContext. " + le.getMessage());
// Insert the error processing code
} catch(SecurityException se) {
System.out.println("Cannot create LoginContext." + se.getMessage());
// Insert the error processing code
}
try {
lc.login();
} catch (LoginException le) {
System.out.println("Fails to create Subject. " + le.getMessage());
// Insert the error processing code
----------------
code end
I do not know if tomcat provide some APIs like the above, and we
could use the API to programmic login to the tomcat server. and where
to find the instruction to use the API?
Many Thanks!
Zhu quanxin
2007/9/5, David Delbecq <[EMAIL PROTECTED]>:
> http://tomcat.apache.org/tomcat-5.5-doc/config/host.html
>
> See section about single-sign. This share credential between webapps.
>
> Note: it's not a "programamtic". It just let all your application share
> a same authentification token. Once you authenticate using J2EE
> compliant method in application X, it's not necessary to login into
> other application Y on same host that is also using J2EE compliant
> authentification mecanism.
>
> En l'instant précis du 05/09/07 16:51, 朱全鑫 s'exprimait en ces termes:
> > hi, everyone
> >
> > I meet a problem about programmic login. I setup a tomcat server,
> > and deploy two WAR files (applications) on it. One of the application
> > A is protected by server authentication, and the other application B
> > is not. I want to setup a scenario : when user navigates the
> > application B, he could programmic login to tomcat using username and
> > password that is coded in the application of B, and then he
> > navigates the application A in the same browser, he never needs to
> > response the challenge promoted by application A.
> >
> > I would very appreciate if someone could help me.
> >
> > Thanks
> >
> > Zhu Quanxin
> >
> > ---------------------------------------------------------------------
> > To start a new topic, e-mail: users@tomcat.apache.org
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
>
>
> --
> http://www.noooxml.org/
>
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
