-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Peter,
Peter Stavrinides wrote: > I do mention however that two separate physical servers exist and the > webapps are on two separate web servers as well... they appear under the > same host to users because the URL's are dynamically rewritten on the > front end. The DNS is entirely separate, so to share a login across the > two would require that I pass authentication information between the two > web servers somehow, do you understand? If you really are using "Basic Auth", then your browser sends the authentication information with every request in a header. Therefore, it doesn't matter that they are on separate servers. Your load balancer and URL-rewriter should pass this header through unscathed and allow each app to read that information. > Also, sharing a session is not possible in this case because the Perl > application is stateless, for this reason also it uses Apache basic > authentication, so I cant use forms authentication or the problem would > be easily solved with a common sign-in as you suggested, but > unfortunately thats not an option. I think that sessions are unrelated to what you're asking about. You just wanted to use a single login for two apps, right? The presence of a session is irrelevant. I'm not suggesting that you use form authentication: I'm suggesting that you use BASIC in both webapps. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFt5Yr9CaO5/Lv0PARAtzZAJ4lDd6WREmzX1q07yNy5QvtYmZDTQCgtkFg Ia7H3Azeaj6WATEnJrxfNIE= =MfZx -----END PGP SIGNATURE----- --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
