This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes GWT and the fly likes GWT: Service call and security Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Frameworks » GWT
Bookmark "GWT: Service call and security" Watch "GWT: Service call and security" New topic
Author

GWT: Service call and security

Cliff Zhao
Greenhorn

Joined: Dec 17, 2006
Posts: 2
How to integrate Web-based single sign-on solutions such as CA SiteMinder, with GWT?

Can it handle the senario:
The application initially signed-on, but after a 30 minutes idle, the SiteMinder redirects your ajax call to an html page for a re-login. Also the login page is from another corporate authentication web site.

Thanks.
sham ram
Greenhorn

Joined: Dec 17, 2009
Posts: 1
Hi,

Please help me I am in the same situation. I am creating a response which redirects back to the home page. But the application is unable to understand those calls. After the timeout 30 min I am still logged in but AJAX call failure appears from the application.

Any help !!!


Thanks,

Sham
salvin francis
Ranch Hand

Joined: Jan 12, 2009
Posts: 917

well, i dont know about "CA SiteMinder",
but there is one thing common in your app:
ajax calls fail after 30 mins..

so, i suggest, why dont you create a design that , on the failure of an ajax call, try to check if the user is authenticated, if not re-authenticate the user ?


having said that, I wonder in what situation would a user keep a browser window open for that long

My Website: [Salvin.in] Cool your mind:[Salvin.in/painting] My Sally:[Salvin.in/sally]
Vish Shukla
Ranch Hand

Joined: Oct 12, 2008
Posts: 111
You can integrate Struts2 as front controller. All the requests from client will be directed to Struts2 interceptor. On login, put authentication details in http session and for each subsequent request, in the login interceptor, verify authenticity.

This may help in Struts2 integration with GWT. Struts2-GWT Plugin


Thanks & Regards,
Vishal S Shukla (SCJP 93%, SCWCD 94%, SCBCD 100%)
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: GWT: Service call and security
 
Similar Threads
GWT vs Struts vs JSF
Siteminder session timeout - AJAX response issue
problems in logout
Controlled navigation
prompt user to login after first free 3 attempts.