Current situation: - 1 Webserver - Many applications (e.g. X, Y, ...) - Many users (e.g. A, ...)
Workflow: - User A log on the system using application X - After he logged on, the session contains data regarding to which usergroups he belongs to - User A is now changing into appplication Y - Application Y must check, whether user A is allowed to use this application
Problem: - even both applications use following code...
The intent of the servlet / JSP API is to keep "web applications" completely separate for security. Therefore an extra effort is required to communicate between applications - for example by means of a common database. Bill