This week's book giveaway is in the OCMJEA forum. We're giving away four copies of OCM Java EE 6 Enterprise Architect Exam Guide and have Paul Allen & Joseph Bambara on-line! See this thread for details.
We use Websphere for customer-facing web apps, and have apps that are secured, users need to log in.
One group in our organization has created an app on a Tomcat server. They want to keep this behind the firewall - they don't want to worry about putting it on the public network. They want to see if it's possible to use WebSphere as a kind of reverse proxy that also handles security. So when a user goes to a particular subdomain, they go through Websphere, and have to be authenticated, but the web app is really running somewhere else on Tomcat.