tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Johnny Kewl" <>
Subject Re: Single sign on issue with Tomcat and Apache
Date Thu, 05 Jun 2008 00:17:00 GMT

----- Original Message ----- 
From: "André Warnier" <>
To: <>
Cc: <>
Sent: Thursday, June 05, 2008 1:06 AM
Subject: RE: Single sign on issue with Tomcat and Apache

> Hi.
> I saw your ongoing discussion, and maybe I can contribute something, but I 
> need some more info before.
> Here is what you explained before :
> a) You have one site "" to which users access this way :
> user -------------------------------> tomcat
> b) and another site "" to which users access this way :
> 1) static content :
> user ------------------------------> Apache
> 2) dynamic content :
> user -----> Apache ---> mod_jk ---> tomcat
> Is it really like described above ?

Yes the exact architecture would help ;)

I understand it like this

browser ------------------> Tomcat on
browser <----------------- Tomacat delivers web pages with links to
browser -------------------> Apache on with images and stuff (that 
wont authenticate)

Reason is browser will not return auth and cookies that belong to domain to

What (I think) may work is what you have indicated

user -----> Apache ( ---> mod_jk ---> tomcat

All links now to and JK setup to talk to

Images on Apache and servlet JKMounted on

The browser will return Basic header and cookies... so I think Apache auth 
modules and tomcat on SingleSignOn will work.

All assuming this can be setup and if the images are hosted remotely that 
the Sp can set up JK etc.
But is webapp cannot be changed and images are hardcoded in servlet... I 
think he's snookered and probably has to lose authentication on Apache.
Thats how I understand it...


The most powerful application server on earth.
The only real POJO Application Server.
See it in Action :

To start a new topic, e-mail:
To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message