I implemented a servlet and deployed it in Tomcat 6.0. The servlet is secured using Tomcat authentication mechanism which reads user credentials from the conf/users.xml file.
We have a customer who would like to put a link on a web page (hosted by their server) which will invoke the servlet (hosted on our Tomcat server). We would also like to continue using the existing authentication mechanism. So, the question is how can we configure the customer environment, the link or my Tomcat server to allow authentication to happen without requiring the end-user to type in the user name and password? Can we implement link authentication using JavaScript to set HTTP headers? Thanks.
