Results 1 to 5 of 5

Thread: Global authentication between 3 webapps

  1. Aug 1st, 2011, 12:15 PM #1
    jmzc
    jmzc is offline Junior Member
    Join Date
    Aug 2011
    Posts
    2

    Default Global authentication between 3 webapps

    Hi:

    I've got 3 web application runnning into Tomcat 7: login.war , admin.war and stuff.war
    I want to secure admin.war and stuff.war by redirecting to a form-login page in login.war when accessing to protected resource
    So, if I access to a protected resource in admin.war

    ie, http://localhost:8080/admin/protected/file.properties

    , Spring Security redirects to login.war , ( http://localhost:8080/login/) , checks user/password/role and , if success , AuthenticationSuccessHandler bean determines URL to redirect by browser.
    In this case, http://localhost:8080/admin/protected/file.properties

    I tried it but when browser performs the last redirection, admin.war checks that this resource requires validation. And redirect to form-login page in login.war again.
    So, admin.war doesn't know that user was valid.

    Is there any way to implement a global authentication between many web applications?
    This "global authentication" implies SSO but I would like to implement without CAS o external libraries/servers.

    I means, I want to make something like a 'standard realm' for all web applications running under a same virtual host.

    What is the right way in Spring security to perform these steps?

    Thanks
    Reply With Quote Reply With Quote
  2. Apr 18th, 2012, 08:11 PM #2
    wanted.alive
    wanted.alive is offline Junior Member
    Join Date
    Feb 2011
    Posts
    4

    Default

    hello... did you get your answer?? i'm facing the same problem here...

    thx
    Reply With Quote Reply With Quote
  3. Apr 19th, 2012, 01:04 AM #3
    jmzc
    jmzc is offline Junior Member
    Join Date
    Aug 2011
    Posts
    2

    Default

    Quote Originally Posted by wanted.alive View Post
    hello... did you get your answer?? i'm facing the same problem here...

    thx
    Sorry, but I don't.

    I couldn't use Spring with SSO. I had to use SSO mechanism integrated into Tomcat server
    Reply With Quote Reply With Quote
  4. Apr 24th, 2012, 09:28 AM #4
    thobson
    thobson is offline Member
    Join Date
    Nov 2006
    Location
    London, UK and Tallinn, Estonia
    Posts
    55

    Default

    One option is to use Tomcat's container managed single sign on and then use Spring's pre-authentication feature. However Tomcat's SSO feature is pretty basic, it's limited to a single server (unless you replicate sessions which quickly becomes a major bottleneck) and obviously it only works on Tomcat. However this would at least allow you to use Spring's authorization mechanisms.

    The best option would be to deploy a "real" single sign on system though
    Toby Hobson
    toby.hobson@cloudseal.com
    Single Sign on for Java - www.cloudseal.com
    Follow me on Twitter: tobyhobson
    Reply With Quote Reply With Quote
  5. Nov 19th, 2012, 03:31 AM #5
    ts-hra
    ts-hra is offline Junior Member
    Join Date
    Nov 2012
    Posts
    8

    Default

    Quote Originally Posted by thobson View Post
    The best option would be to deploy a "real" single sign on system though
    What is a real SSO system in this context?
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules