Hello, I am exploring SSO with EHCache. Following these examples I've mostly gotten it working.
http://shiro-user.582556.n2.nabble.com/Shiro-and-multiple-wars-within-the-same-Servlet-Container-td5560737.html#a5563334 http://shiro-user.582556.n2.nabble.com/SSO-on-single-tomcat-container-td7577698.html However, I can't seem to get Remember Me to work. I see both the ssoCookie and rememberMe cookies being set in the browser but if I close the browser and start a new session I am sent to the login page. *guessing* I would think that selecting Remember Me would cause the ssoCookie to live as long as rememberMe but since ssoCookie expires with the browser session, the rememberMe cookie appears to be ignored. Any clues on how to get around this would be appreciated. Below is my config and I am using Shiro 1.2.3 Thanks [main] sessionManager=org.apache.shiro.web.session.mgt.DefaultWebSessionManager securityManager.sessionManager=$sessionManager # Cache for single sign on ehCacheManager = com.corix.mblink.shiro.EhCacheManagerFactory ehCacheManager.cacheManagerConfigFile = classpath:shiro_ehcache.xml cacheManager = org.apache.shiro.cache.ehcache.EhCacheManager cacheManager.cacheManager = $ehCacheManager securityManager.cacheManager = $cacheManager # DAO for single sign on sessionDAO = org.apache.shiro.session.mgt.eis.EnterpriseCacheSessionDAO securityManager.sessionManager.sessionDAO = $sessionDAO # cookie for single sign on cookie = org.apache.shiro.web.servlet.SimpleCookie cookie.name = ssoCookie cookie.path = / securityManager.sessionManager.sessionIdCookie = $cookie #Configure filter chains and filter parameters authc.loginUrl = /login.jsp logout.redirectUrl = login.jsp [users] admin = secret john = secret, goodguy, schwartz natasha = secret, badguy, schwartz [roles] # 'admin' role has all permissions, indicated by the wildcard '*' admin = * # The 'schwartz' role can do anything (*) with any lightsaber: schwartz = lightsaber:* # The 'goodguy' role is allowed to 'drive' (action) the winnebago (type) with # license plate 'eagle5' (instance specific id) goodguy = winnebago:drive:eagle5 [urls] # The 'urls' section is used for url-based security # in web applications. We'll discuss this section in the # Web documentation login.jsp = authc /logout = logout /* = authc -- View this message in context: http://shiro-user.582556.n2.nabble.com/Trouble-getting-SSO-and-Remember-Me-to-work-together-tp7580041.html Sent from the Shiro User mailing list archive at Nabble.com.
