makes sense depending on the scope session scope information can be stored in either session scope and carried throughout Browser session Application is trickier as the information you have to be stored usually to a Database
oracle Single-signon works well with exsiting oracle application technology stack and oracle database http://www.oracle.com/technology/products/id_mgmt/esso/index.html Jetspeed Portal system allows you to setup group roles and users join the roles and have access read/write/execute/delete access to defined resource (doc/jpg/pdf/page) http://portals.apache.org/jetspeed-2/ Not trivial to setup either but its something you may want to seriously consider Feel free to ping me offline if you need help with either product Martin Gainty ______________________________________________ Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger sein, so bitten wir hoeflich um eine Mitteilung. Jede unbefugte Weiterleitung oder Fertigung einer Kopie ist unzulaessig. Diese Nachricht dient lediglich dem Austausch von Informationen und entfaltet keine rechtliche Bindungswirkung. Aufgrund der leichten Manipulierbarkeit von E-Mails koennen wir keine Haftung fuer den Inhalt uebernehmen. Ce message est confidentiel et peut être privilégié. Si vous n'êtes pas le destinataire prévu, nous te demandons avec bonté que pour satisfaire informez l'expéditeur. N'importe quelle diffusion non autorisée ou la copie de ceci est interdite. Ce message sert à l'information seulement et n'aura pas n'importe quel effet légalement obligatoire. Étant donné que les email peuvent facilement être sujets à la manipulation, nous ne pouvons accepter aucune responsabilité pour le contenu fourni. > Date: Mon, 12 Oct 2009 09:17:21 -0400 > Subject: Questions on "Single Sign On"? > From: josh.good...@gmail.com > To: users@tomcat.apache.org > > To my knowledge the Single Sign on in Tomcat is a way for all of your back > end applications in your VH to recognize that you have logged in to one > place, and all of the apps belonging to that VH will be logged into. > > What I am trying to do is restrict the login from users to one single > session. (i.e. if you are logged in once, you cannot log in again unless > your session expires or you log out.) Is this possible with what is > included with Tomcat or is this going to take some custom code? Either way > us fine, i'm just trying to use the server to handle as much of the work > load as possible and lessen the actual coding load. > > Thanks in advance, > > - Josh _________________________________________________________________ Hotmail: Trusted email with Microsoft’s powerful SPAM protection. http://clk.atdmt.com/GBL/go/177141664/direct/01/
