My Flex app is called in a custom wrapper residing in an asp.net application which is secured by "forms" (cookie-based) authentication. (NOT NTLM / Windows Integrated).
I need to secure the Flex app, but I don't want the user to have to log in again, which is what happens when I use the J2EE security on Tomcat. I can see the asp authorization header in the request on Tomcat.
I have a programmatic solution in mind, involving the wrapper generating a key, saving it to a database, then having the flex app retrieve and compare the key from the wrapper and the db, but this is going to be comparatively ugly.
Anyone got any other ideas?
Tracy
--
Flexcoders Mailing List
FAQ: http://groups.yahoo.com/group/flexcoders/files/flexcodersFAQ.txt
Search Archives: http://www.mail-archive.com/flexcoders%40yahoogroups.com
SPONSORED LINKS
| Web site design development | Computer software development | Software design and development |
| Macromedia flex | Software development best practice |
YAHOO! GROUPS LINKS
- Visit your group "flexcoders" on the web.
- To unsubscribe from this group, send an email to:
[EMAIL PROTECTED]
- Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service.
