Hi all. I am trying to figure out the best way to let a user on my existing site seamlessly access OfBiz, either through an iframe or a redirect. It seems that the first step in this is to allow for SSO from my existing site to ofbiz.
The best solution I have come up with so far is to create a web service that creates an externalLoginKey. I see that the current externalLoginKey is stored in a static map on LoginWorker. As I some day may wish to have multiple OfBiz servers, I think I would need to store the externalLoginKey and an expiry time in the userLogin table. I can try to build that, but it seems like this would be a very common need for OfBiz users, and if SSO has been done before I don't want to re-invent the wheel. Any suggestions? Thanks so much for your help. Mason
