This week's book giveaway is in the JavaScript forum.
We're giving away four copies of Cross-Platform Desktop Applications: Using Node, Electron, and NW.js and have Paul Jensen on-line!
See this thread for details.
Win a copy of Cross-Platform Desktop Applications: Using Node, Electron, and NW.js this week in the JavaScript forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Single sign-on system  RSS feed

 
Maggie Ling
Greenhorn
Posts: 8
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi,

Does any one have experience implement a SSO (Single Sign-On system) for Web applications in Java? Can you please explain to me the concept and roughly how/what technology I should use? Thank you!
 
Cameron Wallace McKenzie
author and cow tipper
Saloon Keeper
Posts: 4968
1
Hibernate Spring Tomcat Server
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I do alot of work with WebSphere Single-Sign-On. Is SSO a registered trademark by anyone? Not sure.

With WebSphere, the network deployment manager generates an SSO key. That SSO key is then shared with other nodes that share the same top level domain name, like ibmrulestheworld.com. If all the machines share the same domain name, and the same sso key, they are considered trusted, and can accept authentication cookies from other machines. I think the key is kept in the cookie, thus the name for all machines to share the same domain name.

That's my WebSphere/IBM world. I'm sure there are not only a million definitions of SSO, but a million implementations as well.

Not, IBM SSO extends beyond J2EE apps, but to LDAP, Domino, Sametime and all sorts of other crazy and nutty servers.

Cheers!

-Scameron
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!