J2EE single sign-on

J2EE single sign-on
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 General Computer Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
J2EE single sign-on pk 08-31-2005
Posted by pk on August 31, 2005, 6:42 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi:

Does anyone know of products for providing single sign-on on multiple
J2EE web apps ? Our company's requirements are as follows :-

1. We want single sign-on capabilities across 2 webapps. One deployed
on
Tomcat, and the other on WebSphere.

2. The apps will be in 2 different geographical locations, with
different DNS domains.

3. Potentially work with https

>From preliminary research, here's what I found.
1. JOSSO (open-source) would've worked, except it doesn't work with
WebSphere (as far as I can tell)

2. Cams from www.cafesoft.com - Works with WebSphere and Tomcat.
Doesn't
work across multiple domains. Doesn't support https.

3. Vintela - www.vintela.org - Works with WebSphere and Tomcat. Don't
know about the rest.

Thanks!
-Prashant



Posted by Volker Birk on September 1, 2005, 2:05 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> 1. We want single sign-on capabilities across 2 webapps. One deployed
> on Tomcat, and the other on WebSphere.

Deployed on Tomcat? Tomcat is not an application server, but a JSP
implementation. Do you mean JBoss?

Because JBoss/Tomcat and the newer releases of WebSphere are supporting
JAAS, this should be a configuration question only.

As an alternative, you could ad a portal:

http://portals.apache.org/jetspeed-2/

Yours,
VB.
--
"Es kann nicht sein, dass die Frustrierten in Rom bestimmen, was in
deutschen Schlafzimmern passiert".
Harald Schmidt zum "Weltjugendtag"


Similar ThreadsPosted
Single Signon cookie encryption - industry standard/best practice? August 24, 2004, 9:34 pm
.NET and J2EE single sign-on February 15, 2005, 11:46 am
Single Sign-on API May 31, 2007, 9:44 pm
Single tool for audit, compliance, penetration test and forensic April 10, 2008, 6:44 am

The site map in XML format XML site map

Contact Us | Privacy Policy