"Craig R. McClanahan" wrote:
>
> You might want to look at how Tomcat 4.0 addresses the "single sign
> on" feature of the servlet spec, which requires user authentication
> to be global across the web apps in a virtual host (even though the
> sessions are unique). It's done by maintaining a separate cookie,
> and a separate collection of available "authentications", that
> intervenes before the usual per-web-app authentication takes place.
> The class you want to look at is
> org.apache.catalina.authenticator.SingleSignOn -- plus you will
> want to examine the other classes in the same package to see how the
> interactions work.
Thanks for comments again! I will take a look.
Rgds
Antony
--
Antony Bowesman
Teamware Group
[EMAIL PROTECTED]
tel: +358 9 5128 2562
fax: +358 9 5128 2705
