Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 79936 invoked from network); 3 Jun 2008 21:25:32 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 3 Jun 2008 21:25:32 -0000 Received: (qmail 49320 invoked by uid 500); 3 Jun 2008 21:25:23 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 49296 invoked by uid 500); 3 Jun 2008 21:25:23 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 49285 invoked by uid 99); 3 Jun 2008 21:25:22 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 03 Jun 2008 14:25:22 -0700 X-ASF-Spam-Status: No, hits=-2.3 required=10.0 tests=RCVD_IN_DNSWL_MED,SPF_HELO_SOFTFAIL,SPF_PASS,WHOIS_MYPRIVREG X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of barry.l.propes@citi.com designates 192.193.221.105 as permitted sender) Received: from [192.193.221.105] (HELO mail.citigroup.com) (192.193.221.105) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 03 Jun 2008 21:24:23 +0000 Received: from imbarc-ss01.nam.nsroot.net (imbarc-ss01.ss.ssmb.com [135.155.128.166]) by imbaspam-ss03.namdmz.dmzroot.net (8.13.8/8.13.8/SSMB_EXT/ev: 16778 $) with ESMTP id m53LOik7007073 for ; Tue, 3 Jun 2008 21:24:44 GMT Received: from mailhub-nyc4-1.ny.ssmb.com (mailhub-nyc4-1.ny.ssmb.com [162.124.152.39]) by imbarc-ss01.nam.nsroot.net (8.13.8/8.13.8/SSMB_QQQ_IN/1.1) with ESMTP id m53LOaxi019188 for ; Tue, 3 Jun 2008 21:24:36 GMT Received: from exnjsm05.nam.nsroot.net (EXNJSM05.nam.nsroot.net [169.193.40.39]) by mailhub-nyc4-1.ny.ssmb.com (8.13.8/8.13.8/CG_HUB) with ESMTP id m53LNKn9009749 for ; Tue, 3 Jun 2008 21:24:36 GMT Received: from exnjmb23.nam.nsroot.net ([169.193.40.18]) by exnjsm05.nam.nsroot.net with Microsoft SMTPSVC(5.0.2195.6713); Tue, 3 Jun 2008 17:23:47 -0400 X-MimeOLE: Produced By Microsoft Exchange V6.0.6619.12 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: RE: Single sign on issue with Tomcat and Apache Date: Tue, 3 Jun 2008 17:27:13 -0400 Message-ID: <3A55348B50FD2A40AAA40ABA16C6B6D60E7CDA89@EXNJMB23.nam.nsroot.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Single sign on issue with Tomcat and Apache Thread-Index: AcjFv9zlhqIgbTx5RSWm3QS3ttagRgAABu+Q From: "Propes, Barry L " To: "Tomcat Users List" X-OriginalArrivalTime: 03 Jun 2008 21:23:47.0414 (UTC) FILETIME=[1BFEDF60:01C8C5C0] X-Scanned-By: MIMEDefang 2.52 on 169.175.16.182 X-Virus-Checked: Checked by ClamAV on apache.org and you're stuck on Java 1.3.1 and cannot go forward? -----Original Message----- From: sridharmnj [mailto:sridharmnj@yahoo.co.in] Sent: Tuesday, June 03, 2008 4:17 PM To: users@tomcat.apache.org Subject: RE: Single sign on issue with Tomcat and Apache Apache 2.0.50 Tomcat 5.0.27 Java 1.3.1 Propes, Barry L wrote: >=20 > what versions are you using? Of each? >=20 > -----Original Message----- > From: sridharmnj [mailto:sridharmnj@yahoo.co.in] > Sent: Tuesday, June 03, 2008 3:52 PM > To: users@tomcat.apache.org > Subject: Single sign on issue with Tomcat and Apache >=20 >=20 >=20 > Hi, > I am integrating two websites using single sign on. I have two sites > namely > aaa.com and bbb.com. >=20 > When a user navigates from aaa.com, as he is already authenticated in = it, > he > should be allowed to bbb.com without asking the credentials again. = This is > my requirement.=20 >=20 > aaa.com is based on Tomcat Form based authentication and working fine. >=20 > bbb.com's static data is deployed on apache and it requires apache = BASIC > authentication (htttd, and .htaccess). And dynamic data is deployed on > Tomcat and based on Tomcat BASIC authentication. >=20 > If I access static data of bbb.com, it first asks for credentials = (Using a > popup), authenticates using mod_auth_mysql, and once the user is > authenticated, it is storing credentials in browser cache. When I = navigate > to dynamic content which is in tomcat, still its working without = asking > credentials twice. (I ensured that in web.xml and = AuthName in > .htaccess file are same).=20 >=20 > I enabled SingleSignOn valve in server.xml file, and trying to access > bbb.com from aaa.com. When I try to access dynamic data of bbb.com = from > aaa.com, as both are based on Tomcat security, they are sharing the > browser > cached credentials. (Though one is based on form and another is based = on > basic authentication model). But, when I try to access bbb.com's = static > data > (which is in apache) from aaa.com, again its asking credentials, using = a > popup. >=20 > bbb.com is an old project which was developed around 9 yrs ago and I = am > not > allowed to modify/reengineer the architecture.=20 >=20 > Could any one please guide me in right direction. I appreciate your = help. >=20 > Thanks, > Sridhar=20 > --=20 > View this message in context: > = http://www.nabble.com/Single-sign-on-issue-with-Tomcat-and-Apache-tp17633= 391p17633391.html > Sent from the Tomcat - User mailing list archive at Nabble.com. >=20 >=20 > --------------------------------------------------------------------- > To start a new topic, e-mail: users@tomcat.apache.org > To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org > For additional commands, e-mail: users-help@tomcat.apache.org >=20 >=20 > --------------------------------------------------------------------- > To start a new topic, e-mail: users@tomcat.apache.org > To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org > For additional commands, e-mail: users-help@tomcat.apache.org >=20 >=20 >=20 --=20 View this message in context: = http://www.nabble.com/Single-sign-on-issue-with-Tomcat-and-Apache-tp17633= 391p17633917.html Sent from the Tomcat - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org