This week's book giveaway is in the Clojure forum.
We're giving away four copies of Clojure in Action and have Amit Rathore and Francis Avila on-line!
See this thread for details.
Win a copy of Clojure in Action this week in the Clojure forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

GWT: Service call and security

 
Cliff Zhao
Greenhorn
Posts: 2
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
How to integrate Web-based single sign-on solutions such as CA SiteMinder, with GWT?

Can it handle the senario:
The application initially signed-on, but after a 30 minutes idle, the SiteMinder redirects your ajax call to an html page for a re-login. Also the login page is from another corporate authentication web site.

Thanks.
 
sham ram
Greenhorn
Posts: 1
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,

Please help me I am in the same situation. I am creating a response which redirects back to the home page. But the application is unable to understand those calls. After the timeout 30 min I am still logged in but AJAX call failure appears from the application.

Any help !!!


Thanks,

Sham
 
salvin francis
Bartender
Pie
Posts: 1222
10
Eclipse IDE Google Web Toolkit Java
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
well, i dont know about "CA SiteMinder",
but there is one thing common in your app:
ajax calls fail after 30 mins..

so, i suggest, why dont you create a design that , on the failure of an ajax call, try to check if the user is authenticated, if not re-authenticate the user ?


having said that, I wonder in what situation would a user keep a browser window open for that long
 
Vish Shukla
Ranch Hand
Posts: 111
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
You can integrate Struts2 as front controller. All the requests from client will be directed to Struts2 interceptor. On login, put authentication details in http session and for each subsequent request, in the login interceptor, verify authenticity.

This may help in Struts2 integration with GWT. Struts2-GWT Plugin
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic