This week's book giveaway is in the OCAJP forum.
We're giving away four copies of Programmer's Guide to Java SE 8 Oracle Certified Associate (OCA) and have Khalid A Mughal & Rolf W Rasmussen on-line!
See this thread for details.
Win a copy of Programmer's Guide to Java SE 8 Oracle Certified Associate (OCA) this week in the OCAJP forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

WAS 5 - Sharing same login between multiple WARs

 
Jason Brawner
Ranch Hand
Posts: 66
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I've created an EAR which contains several web applications, all of which will require authentication. I've noticed with the Websphere extensions that I'm able to share the session context but it doesn't appear share the login information (which is contained in the session, right?).
I'm using the j_security_check with Local OS Auth. and have the same Security Role defined in all WARS but when the user switches from one WAR to another within the same EAR they are prompted again for a login. So my questions are...
Is it possible to share login info?
Does the 'Shared session context' WebSphere Ext. allow for this and I've just got it configured incorrectly?
Thanks,
 
Kyle Brown
author
Ranch Hand
Posts: 3892
5
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
This sounds like you're not creatign a LTPA Token (which is a cookie shared by all the WebSphere applications). I think (but don't have the references at hand to check) that you do this by selecting LTPA instead of SWAM as your authentication method. This requires you, however, to use LDAP, a Windows Domain, or a custom registry intead of Local OS authentication. Check the WebSphere v5 security handbook redbook to be sure.
Kyle
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic