Hello All,
We have multiple WAR files deployed under one Tomcat instance. To allow
for Single Sign On (SSO), we have our own Session DAO that broadcasts to
all war files when the Sessions are changed and this is working well.
Our next problem is with changing permissions. If an administrator
wants to change a user's permissions we want that to take effect
immediately, not after logout/login. The WebApp that changes the
permission flushes the Realm AuthorizationInfo cache for that user.
My current plan is to broadcast AuthorizationInfo changes like we do
Session changes, but I figured I'd ask if there was a standard way to do
this or maybe something I've overlooked?
Thanks in advance!
Sincerely,
Stephen McCants
--
Stephen McCants
Senior Software Engineer
Healthcare Control Systems
1-877-877-8795 x116
