[jboss-jira] [JBoss JIRA] Commented: (JBAS-4424) WebAuthentication:Generate a SSOID
Stefan Guilhen (JIRA)
jira-events at lists.jboss.org
Thu Oct 11 19:09:03 EDT 2007
[ http://jira.jboss.com/jira/browse/JBAS-4424?page=comments#action_12381884 ]
Stefan Guilhen commented on JBAS-4424:
--------------------------------------
I'm implementing the SSO functionality pretty much like the AuthenticatorBase, by delegating the SSO operations to the SingleSignOn valve. However, the methods that we must invoke (register, update, associate) are protected in the SingleSignOn class. I've started a discussion on the forums (http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4094309#4094309), and my first idea is to relax the SingleSignOn method's access to public in JBossWeb.
> WebAuthentication:Generate a SSOID
> ----------------------------------
>
> Key: JBAS-4424
> URL: http://jira.jboss.com/jira/browse/JBAS-4424
> Project: JBoss Application Server
> Issue Type: Task
> Security Level: Public(Everyone can see)
> Components: Web (Tomcat) service, Security
> Affects Versions: JBossAS-4.2.0.GA
> Reporter: Anil Saldhana
> Assigned To: Stefan Guilhen
>
> http://wiki.jboss.org/wiki/Wiki.jsp?page=WebAuthentication
> The feature needs to implement the sso stuff if it is desired by the user. At the least, ssoid needs to be generated and set on the session.
> The ssoid generation logic exists in AuthenticatorBase.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list