Return-Path: Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 11340 invoked from network); 22 Nov 2000 17:11:39 -0000 Received: from mercury.sun.com (192.9.25.1) by locus.apache.org with SMTP; 22 Nov 2000 17:11:39 -0000 Received: from taller.eng.sun.com ([129.144.123.34]) by mercury.Sun.COM (8.9.3+Sun/8.9.3) with ESMTP id JAA25029 for ; Wed, 22 Nov 2000 09:11:38 -0800 (PST) Received: from eng.sun.com (d-ucup02-251-148 [129.144.251.148]) by taller.eng.sun.com (8.9.3+Sun/8.9.3/ENSMAIL,v1.7) with ESMTP id JAA21564 for ; Wed, 22 Nov 2000 09:11:35 -0800 (PST) Message-ID: <3A1B7428.94AAE07D@eng.sun.com> Date: Tue, 21 Nov 2000 23:22:16 -0800 From: "Craig R. McClanahan" X-Mailer: Mozilla 4.75 [en]C-CCK-MCD {Sony} (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: tomcat-user@jakarta.apache.org Subject: Re: Managing security on multiple contexts - urgent ! References: <11898960E237D411B53B0060B06BB445424937@afexch1.fao.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Spam-Rating: locus.apache.org 1.6.2 0/1000/N "Lacerda, Wellington (AFIS)" wrote: > I've a set of web applications /a, /b and /c and a set of users I want to > have access to them, but using a single login. The user logs in via a form > based login or something and have access to all the applications. Is it > possible in Tomcat 3.2 ? > No. You need to use Tomcat 4.0 to gain this kind of "single sign on" support. > > I wonder if I apply security restrictions to the default web.xml file I can > have all my contexts sharing the same security schema ? > Nope. In Tomcat 3.2, all authentication is performed on a per-webapp basis. > > Thanks, > > Wellington Craig McClanahan