Struts, JAAS Form authentication and Single Sign On
posted 11 years ago
I have a struts application that uses JAAS to login,I use FORM authentication. I have a menu button on the home page you see after login on which I have placed a role. This is fine when I login as usual using the login form.
However, we have one client who wants to use single sign on. I have a link from their landing page to the application where I pass the username and password to j_security check as parameters: action/home/j_security_check?j_username=joe&j_password=joespwd
This works fine apart from one thing, the button on which I have placed the role is not visible. Yet when I click on the 'Home' link within the application, it now shows the button. So it seems that bypassing the login page this way skips some step that enables the button. The strange thing is that the role that enables them to login is the same as the one used to enable the button. The app detects the role and enables them to login but doesn't display the button..