2 Replies Latest reply on Oct 19, 2007 3:33 PM by anil.saldhana

Help securing 3 webapps

konstandinos Oct 17, 2007 10:43 AM

Hi

I have 3 webapps (all deployed as WARs):
- one is custom-built
- one is JSPWiki
- one is JForum

The custom-built webapp is deployed as ROOT.war, and is thus accessible like so: www.example.com

(note: I am forwarding port 80 to 8080)

The JSPWiki webapp (wiki.war) is accessible at www.example.com/wiki/

The JForum webapp (forum.war) is accessible at www.example.com/forum/

All 3 webapps need to have their access restricted to authorised users. The authentication is to be handled using a single database (using DatabaseServerLoginModule).

So basically once a user has logged in at the root webapp, he needs to be able to access the forum and wiki webapps without having to type in username and password again. And if he tries to navigate to the forum url directly, without having logged in at the root webapp, he needs to be prompted to log in first.

What is the simplest way to do this in JBoss? I am using JBoss AS 4.2.1

Thanks

1. Re: Help securing 3 webapps

konstandinos Oct 18, 2007 7:59 AM (in response to konstandinos)

Hi

I'm just nudging this to the top again. Any ideas on a solution to my problem?

Thanks.
Actions
2. Re: Help securing 3 webapps

anil.saldhana Oct 19, 2007 3:33 PM (in response to konstandinos)

Enable the apache single sign on valve in tomcat server.xml

http://wiki.jboss.org/wiki/Wiki.jsp?page=SingleSignOn
http://anil-identity.blogspot.com/2007/10/tip-7-sso-between-web-applications.html
Actions

Go to original post