With the current codebase this kind of integration would require some customization, either at the level of a custom Realm
implemenation, or within Roller code, or both.
In answer to the last question in your message, there is a way to do something like this that applies only in the case that the two
webapps are in the same Tomcat server. This is probably not your desired deployment scenario, but if it is acceptable, see the
material on Tomcat single-sign on in the Tomcat documentation.
Side note: The development team has been considering replacing container-based authentication with Acegi
(http://acegisecurity.sourceforge.net/) in a future release, which would make single sign-on nominally easier, provided one deploys
Yale's open-source central authentication service (CAS) (http://www.yale.edu/tp/auth/).
--a.
----- Original Message -----
From: "Tony Jang" <[EMAIL PROTECTED]>
To: <[email protected]>; "Henri Yandell" <[EMAIL PROTECTED]>
Sent: Wednesday, July 06, 2005 11:55 PM
Subject: Re: user mailing list archives
I want to integrate Roller with another web application who has its
own authenticate mechanism. I know roller use tomcat realm to
authenticate one user's access to protected resource. My question is
how can i make this user login roller without another login when he
logins that web application? Is there any way to go through the
roller's realm authentication when this user login my another web
application?
thx for ur reply
--
guangquanzhang AT BeiJing
