tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Antony Bowesman <...@teamware.com>
Subject Re: Session per context question
Date Mon, 14 May 2001 10:12:49 GMT
"Craig R. McClanahan" wrote:
> 
> You might want to look at how Tomcat 4.0 addresses the "single sign
> on" feature of the servlet spec, which requires user authentication
> to be global across the web apps in a virtual host (even though the
> sessions are unique).  It's done by maintaining a separate cookie,
> and a separate collection of available "authentications", that
> intervenes before the usual per-web-app authentication takes place.
> The class you want to look at is 
> org.apache.catalina.authenticator.SingleSignOn -- plus you will
> want to examine the other classes in the same package to see how the
> interactions work.

Thanks for comments again!  I will take a look.

Rgds
Antony
-- 
Antony Bowesman
Teamware Group 
adb@teamware.com
tel: +358 9 5128 2562
fax: +358 9 5128 2705

Mime
View raw message