Hi Steve There is a plugin available for SSO across web applications (even different servlet container instances) here: http://cxf.apache.org/fediz-jetty.html
You can also use spring security if you like: http://cxf.apache.org/fediz-spring.html HTH Oli ________________________________ From: [email protected] [[email protected]] on behalf of Ratay, Steve [[email protected]] Sent: 23 March 2013 21:10 To: [email protected] Subject: [jetty-users] Single Sign On Across Webapps I am looking into migrating from Tomcat to Jetty 9 for a custom web application that will essentially be a portal (though it won't be using a JSR-168 or similar portal container). The key concept for the purposes of this post is that the user will only need to log in once, and then he will need to access URLs from several different web applications all running on the same Jetty server. Once the user has logged in they should automatically be authenticated to any other web application running on the server. Tomcat has the org.apache.catalina.authenticator.SingleSignOn valve which accomplishes this exact task. Once you log into a web application, the SingleSignOn valve will automatically log you into any other web applications. So, is there a similar way to provide this same functionality in Jetty 9? It seems that there is a separate SessionManager for each web application. Can you configure or programatically assign the same SessionManager instance to each web application? Is there some other solution that is provided by Jetty out of the box? Thanks, Steve
_______________________________________________ jetty-users mailing list [email protected] https://dev.eclipse.org/mailman/listinfo/jetty-users
