users@glassfish.java.net

Single sign on across web modules within the same EAR

From: <glassfish_at_javadesktop.org>
Date: Mon, 06 Oct 2008 01:42:58 PDT

Hi,

I have a J2EE 1.4 enterprise application containing 3 web modules:
- web module "web1" uses FORM authentication
- web module "web2" uses BASIC authentication
- web module "web3" uses BASIC authentication

Under SJSAS 9.0.1p4 the application allows a user authenticated in any of the web modules to the switch to a different web module without the need of re-authetication. This means that a user correctly authenticated using web module "web1" and clicking on a link to web module "web2" is not prompted for a password.

We are migrating to SJSAS 9.1p1 and single sign on no longer works across web modules. This means that a user correctly authenticated using web module "web1" and clicking on a link to web module "web2" is prompted for a password.

Does anyone know how to solve this issue?
[Message sent by forum member 'mikic' (mikic)]

http://forums.java.net/jive/thread.jspa?messageID=303440
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.