This week's book giveaway is in the JavaScript forum.
We're giving away four copies of Svelte and Sapper in Action and have Mark Volkmann on-line!
See this thread for details.
Win a copy of Svelte and Sapper in Action this week in the JavaScript forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Ron McLeod
  • Paul Clapham
  • Bear Bibeault
  • Junilu Lacar
Sheriffs:
  • Jeanne Boyarsky
  • Tim Cooke
  • Henry Wong
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Tim Holloway
  • salvin francis
  • Frits Walraven
Bartenders:
  • Scott Selikoff
  • Piet Souris
  • Carey Brown

GWT: Service call and security

 
Greenhorn
Posts: 2
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
How to integrate Web-based single sign-on solutions such as CA SiteMinder, with GWT?

Can it handle the senario:
The application initially signed-on, but after a 30 minutes idle, the SiteMinder redirects your ajax call to an html page for a re-login. Also the login page is from another corporate authentication web site.

Thanks.
 
Greenhorn
Posts: 1
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,

Please help me I am in the same situation. I am creating a response which redirects back to the home page. But the application is unable to understand those calls. After the timeout 30 min I am still logged in but AJAX call failure appears from the application.

Any help !!!


Thanks,

Sham
 
Saloon Keeper
Posts: 2669
130
Google Web Toolkit Eclipse IDE Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
well, i dont know about "CA SiteMinder",
but there is one thing common in your app:
ajax calls fail after 30 mins..

so, i suggest, why dont you create a design that , on the failure of an ajax call, try to check if the user is authenticated, if not re-authenticate the user ?


having said that, I wonder in what situation would a user keep a browser window open for that long
 
Ranch Hand
Posts: 111
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
You can integrate Struts2 as front controller. All the requests from client will be directed to Struts2 interceptor. On login, put authentication details in http session and for each subsequent request, in the login interceptor, verify authenticity.

This may help in Struts2 integration with GWT. Struts2-GWT Plugin
 
passwords must contain 14 characters, a number, punctuation, a small bird, a bit of cheese and a tiny ad.
Thread Boost feature
https://coderanch.com/t/674455/Thread-Boost-feature
    Bookmark Topic Watch Topic
  • New Topic