hi all
i want to integrate sso with JAAS i read tutorial that help for that and do the following

add file context.xml under WEB-INF for each .war i want to share in sso
this is it's

<?xml version="1.0" encoding="UTF-8"?>
<Context path="/projectA1" docBase="./deploy/clusteredservlet.war">
 <!--
 logoutURL - URL for performing logout/signout function in your application
 -->
 <Valve className="org.jboss.security.valve.SSOAutoLogout"
 logoutURL="{logoutURL of your application}"/>

 <!--
 assertingParty - this is the partnerId of this application as a part of a federation of multiple partner sites
 -->
 <Valve className="org.jboss.security.valve.SSOTokenManager"
 assertingParty="1"/>

 <!--
 tomcat built-in AuthenticationTypes: FORM,BASIC,DIGEST,CLIENT-CERT
 -->
 <Valve className="org.jboss.security.valve.SSOAutoLogin"
 authType="FORM" provider="si:jboss-sso:ldap:login"/>

</Context>

this is the jboss-web.xml file in each war

<?xml version="1.0" encoding="UTF-8"?>
<jboss-web>
 <security-domain>java:/jaas/$webConsoleDomain</security-domain>
</jboss-web>

and this is login module defined in login-config.xml in
[jboss Home]\server\default\conf

 <application-policy name = "$webConsoleDomain">
 <authentication>
 <login-module code="org.jboss.security.auth.spi.UsersRolesLoginModule"
 flag = "required">
 <module-option name="usersProperties">web-console-users.properties</module-option>
 <module-option name="rolesProperties">web-console-roles.properties</module-option>
 <module-option name="provider">si:jboss-sso:ldap:login</module-option>
 </login-module>
 </authentication>
 </application-policy>

in previous file i add this line
<name="provider">si:jboss-sso:ldap:login</module-option>
as i understand from tutorial to make login module use
this provider to get user login data
after all that the sso dont work where second application require login data
after i login in first application
what is wrong ? or what is missing?

thanks in advance