I have to do one task where user login in one application and there is one href link is provide, when user click on the link I have to take him into another application without authentication .i.e. without asking for username and password using post method and nothing should be caught in burb or sniffer not even encripted username and password. Suppose there are two application A installed on windows (JBoss server) and another on linux server.
How to create single sign on, application server on both side is JBoss. Below are my findings I can pass the username and password to application B but how to open the browser with login.