The behaviour of the app has changed. After setting sso-enabled to true in domain.xml, deploying app1 now gives the following in the GlassFish output:
DPL8007: Invalid Deployment Descriptors element setAuthenticationMethod value class com.sun.enterprise.deployment.LoginConfigurationImpl
DPL8007: Invalid Deployment Descriptors element auth-method value form
DPL5032:An authentication method was not defined in the web.xml descriptor. Using default BASIC for login configuration.
Sure enough, attempting to access root/app1 causes the basic auth pop-up to appear.
In app1's web.xml, what should go into 'auth-method', if not 'form'?
Cheers
[Message sent by forum member 'lrbh' (lrbh)]
http://forums.java.net/jive/thread.jspa?messageID=314817