This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes Security and the fly likes Single sign on between webapp and java app Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Single sign on between webapp and java app" Watch "Single sign on between webapp and java app" New topic
Author

Single sign on between webapp and java app

John Lindwall
Ranch Hand

Joined: May 29, 2002
Posts: 31
Is it possible to have single sign on capability between a webapp and a java application? The java application communicates to the same app server as the webapp.

Use case:
1. User successfully logs into the web application, providing user name and password
2. User clicks a link in the web application that fires up a java application on their desktop (via Java Web Start)
3. The java application magically performs single sign on and is given access to the server resources. The java application is running as the same user that originally logged into the web application in step 1.

Basically we wish to avoid popping up a login dialog from the java application in which the user would be forced to re-enter the user name and password that they previously entered to login to the web app.

If it matters we're using WebLogic 6.1.

Thanks!
Kishore Dandu
Ranch Hand

Joined: Jul 10, 2001
Posts: 1934
u can incorporate full-fledged single-signon tools from sun/ibm etc to accomplish this.

U can also write ur own proprietary stuff to take care of this issue.

I am not sure of a open-source project that will take care of this.see this also.


Kishore
SCJP, blog
 
 
subject: Single sign on between webapp and java app
 
Similar Threads
Tomcat Realms not working between apps with FORM
WAS 4.0.1 AE authentication success but fail to retrieve user
Single Sign-on across web-apps
Any Solution to Break/Overlook the Session Variables ?
how to implement single sign on for applications deployed in sun glass fish server