Hi everyone,
I'm currently using an existing
Java Web Application. It uses the authentication and authorisation build into
Tomcat. It uses a form which has to be submitted with a username and a password. Very common I think.
The situation is as follows:
The application is in an internal network.
People do not want to log in specifically to this application. They are logged into the network and are used to Single Sign On.
I have the code to get the username and password out based on the HTTP-Header.
I can print this on the screen without any problem.
I want to use the found password and username to authenticate in Tomcat, without showing a login-form.
Does anyone know an aprouch that will work? I've tried things with redirecting directly to j_security_check, but it seems that redirecting or forwarding in any way to j_security_check isn't allowed. I've also tried filling out the login-form (silent, so without showing the form) and submit this with Javascript. But I don't get this to work. Wrong Javascript I think.
Thanks a lot,
Regards,
Mark Monster