|Subject:||RE: Multiple Web App Authentication|
|From:||Srofe, Douglas (c) (Doug...@tvratings.com)|
|Date:||Jul 30, 2002 11:35:49 am|
Thank you for your reply. I have done the same thing but what I found is that, using your example,login.jsp would have to reside in each web applications directory. So if I have 5 different web applications, login.jsp would have to be replicated 5 times. I would like to have login.jsp in only one place. Are you experiencing something different?
-----Original Message----- From: HAVENS,PETER (HP-Cupertino,ex3) [mailto:pete...@hp.com] Sent: Tuesday, July 30, 2002 2:31 PM To: 'Tomcat Users List' Subject: RE: Multiple Web App Authentication
I have been working on the same thing. I believe it can be accomplished by modifying your web.xml file in the conf directory. You will need a <security-constraint> and a <login-config>. Here is what I added and it seems be working. Hope this gets you started.
-Peter ----------------------------- <security-constraint> <display-name>Gryphon Authentication</display-name> <web-resource-collection> <web-resource-name>Protected Area</web-resource-name> <!-- Define the context-relative URL(s) to be protected --> <url-pattern>/*</url-pattern> <!-- If you list http methods, only those methods are protected --> <http-method>GET</http-method> <http-method>DELETE</http-method> <http-method>POST</http-method> <http-method>PUT</http-method> </web-resource-collection> <auth-constraint> <!-- Anyone with one of the listed roles may access this area --> <role-name>*</role-name> </auth-constraint> </security-constraint>
<!-- Default login configuration uses form-based authentication --> <login-config> <auth-method>FORM</auth-method> <realm-name>Gryphon Form-Based Authentication</realm-name> <form-login-config> <form-login-page>/login.jsp</form-login-page> <form-error-page>/error.jsp</form-error-page> </form-login-config> </login-config>
-----Original Message----- From: Srofe, Douglas (c) [mailto:Doug...@tvratings.com] Sent: Tuesday, July 30, 2002 11:10 AM To: 'Tomcat Users List' Subject: Multiple Web App Authentication
I am trying to implement single authentication (form based) for multiple web applications within a single virtual host. I have read the documentation for single-sign on and have made that work. However, it appears that the logon page(s) need to be in all web applications. Authentication is granted for all web applications based on the one someone tried to log onto first.
What I would like to do is basically have an "authentication web application". If someone tried to log into any other web application they would be redirected to the "authentication web application" to be logged on. I cannot figure out how to do something like this with Tomcat. I could basically accomplish this by having one big web application, but in our environment it would be cleaner if we could have separate web applications all protected by a single entry point.
If anyone can help with this, it would be greatly appreciated.
Douglas Srofe WDS Corp.