tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: Tomcat Form Authentication that requires no password for third party SSO
Date Wed, 26 Jan 2011 23:30:15 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Beau,

On 1/26/2011 1:10 PM, beau.hutcheson@thomsonreuters.com wrote:
> I am trying to integrate my application with an SSO partner application.

What Tomcat version? I ask because Tomcat 7 includes the Servlet 3.0
programmatic login API.

> After successfully logging into the partner app, I will be redirected
> and only provided a username to log into my tomcat Form Authentication
> app. I am using a DataSourceRealm to check for both Users and User
> Roles.

DataSourceRealm requires both username and password. I think JAASRealm
might be able to help you. Also, one of the list contributors (Pid) is
working on a realm to help with OpenSSO or something like that: he may
have some ideas about how to set things up.

> Are there any suggestions as to how I can still authenticate() through
> the tomcat container without providing a password?

Out of the box, I don't believe Tomcat can do this.

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk1ArocACgkQ9CaO5/Lv0PBVWwCgwvN2jma89OEB0QLPo+rAAnOX
luAAoI/QXqxD1ZX3DhevcyxCyJDL+eCc
=QXO9
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message