Is there any way to access (get/set) HTTP headers from within a custom LoginModule? I'm trying to implement single sign on with another web app server (non-J2EE) that puts a security token in the headers if a user is already logged on and also requires the token to be stuff in the headers when a user is logged on. I can't get the user's password from the token, but I can get the user's Principal name.
I can't find anything on this after searching for single sign on in this forum (using Valves doesn't apply). Also went through the Javaworld sample.