on 5/11/2000 8:38 AM, Ganesan Sankara <[EMAIL PROTECTED]> wrote:
> 1. One of my project requirements is to support single sign-on for all our
> web servers. It works like this. When user logs onto any one of our web
> servers( Web Servers are running in different physical machines in different
> geographical locations), it will redirect user to a
> central web site ( kind of passport site in Microsoft terminology). The user
> will log in and then can access any web servers. There may be various
> solutions to this requirement like creating 1 central session id and
> implicit mulitple session ids for all web servers. How do we implement this
> in turbine.
This is an extremely tough problem to solve and the only way to do it
totally transparently to the user is to use your own session scheme outside
of the servlet api. Turbine allows you to do this by overriding classes (ie:
TurbineUser, SessionValidator, LoginUser).
I have wanted to write a "Session Server" for a long time based on the
XML-RPC Java server, but I haven't had the time yet. This would have a
distributed model where sessions could exist on multiple servers at the same
time and be in sync with each other.
-jon
--
Java Servlet Based - Open Source | Collab.Net
Bug/Issue Tracking System | now hiring smart people
<http://scarab.tigris.org/> | <http://Collab.Net/jobs/>
------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Problems?: [EMAIL PROTECTED]
