This week's book giveaway is in the Design forum.
We're giving away four copies of Building Microservices and have Sam Newman on-line!
See this thread for details.
The moose likes Security and the fly likes JAAS in tomcat6 Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Building Microservices this week in the Design forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "JAAS in tomcat6" Watch "JAAS in tomcat6" New topic

JAAS in tomcat6

chandan Sahoo

Joined: Jun 15, 2008
Posts: 2

I have two different web applications (A and B).There is an admin page in application A. there I have a link to access different feathers provided by application B.
I am using 2 kinds of users (root, admin). The application B is a secured application (used JAAS and tomcat 6). root user can view the feathers and admin users can edit also.
I am passing the username and pass from the application A as a query string to access the particular feather directly from application B.

But while I am clicking on the link on application it is redirecting to the login page in application B and after giving the username and pass I can able to access the feather in application B. But I want the page from application B directly after clicking on the link in application A.

Please advice me.

Ulf Dittmer

Joined: Mar 22, 2005
Posts: 42958
That's the realm of Single Sign-On, or SSO. Check out the Tomcat SSO Valve or the various SSO solutions listed in the SecurityFaq.
I’ve looked at a lot of different solutions, and in my humble opinion Aspose is the way to go. Here’s the link:
subject: JAAS in tomcat6
It's not a secret anymore!