I would like to augment my previous post with this
question: It seems like WebLogic has something called a
NTRealm to handle user authentication with NT domains.
Does JBoss have something similar for this purpose?
Thanks in advance.
I am struggling with this situation as well. I am implementing JBOSS and TOMCAT in a WINDOWS/UNIX env.
Here is what I have done so far.
If you use IIS4/5 and have a ISAPI filter installed to redirect to tomcat you turn on NT authentication on the website (under IIS admin).
You can then extract (in a servlet) the LOGON_USER.
This is my first step at getting who the person actually is.
ie: In my case this returns DOMAIN\myusername
So... anyone going to the corporate web site doesn't have to login and my code knows who they are comming into the website as.
I then pass this along to my EJB for database access.
does this help at all?
What it did for me was to remove the need to put up a login page.