This is a little off topic but is applicable to an servlet engine ...
Has anyone used multi-domain single sign ons? Or integrated things such as Pub Cookie ( http://www.pubcookie.org/) or Cosign (http://www.umich.edu/~umweb/software/cosign/) for federated authentication? If so how to you handle authorization? (How have you mapped roles?)
My situation is I want a single server (or web service) managing logins (and maybe role verification). Then I can have one of many servers throughout my domain use the trusted token provided by the login server.
I'd prefer not to reinvent the wheel. (But might do so to avoid paying for a wheel)
-Tim
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
