This week's book giveaway is in the Jobs Discussion forum.
We're giving away four copies of Java Interview Guide and have Anthony DePalma on-line!
See this thread for details.
The moose likes Servlets and the fly likes creation of Single Sign On in Java/J2EE Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Java Interview Guide this week in the Jobs Discussion forum!
JavaRanch » Java Forums » Java » Servlets
Bookmark "creation of Single Sign On in Java/J2EE" Watch "creation of Single Sign On in Java/J2EE" New topic
Forums: Security Servlets

creation of Single Sign On in Java/J2EE

DeepakN kumar

Joined: Apr 14, 2012
Posts: 27
Can anyone help me create a Single Sign On in Java/J2EE from scratch? I know there are ready made solution available like CAS but i am interested in creating SSO own my own. Please help.
Tim Holloway
Saloon Keeper

Joined: Jun 25, 2001
Posts: 17423

I recommend using the J2EE standard container-managed security system. An SSO security system that is, instead, applied as internal app logic is a logistical nightmare in the offing, since any changes to the global security environment could immediately affect application logic. Besides which, I still haven't seen any user-designed security systems (SSO or otherwise) that had any creditable security even after all these years.

To provide SSO at the container level, you'd need to provide an SSO Realm to the container environment. Whether you use an existing one such as CAS or construct your own doesn't really matter. Other than, of course, the fact that if you roll your own, you have to design, code, and implement the mechanisms that allow the Realm to authenticate and authorize via whatever central security facilitie(s) you tap into.

An IDE is no substitute for an Intelligent Developer.
I agree. Here's the link:
subject: creation of Single Sign On in Java/J2EE
It's not a secret anymore!