[jboss-user] [JBoss Seam] - Re: Security: Better support for single sign on?!
bsmithjj
do-not-reply at jboss.com
Fri Sep 28 10:35:34 EDT 2007
"stephen.friedrich" wrote :
|
| Proposal: Here's a way to make integration into an SSO solution easier:
| Add an attribute to identity that lets me specify a method that is used to try auto-login:
|
| | <security:identity authenticate-method="#{authenticator.authenticate}" auto-login-method="#{authenticator.tryAutoLogin}"/>
| |
|
| Like the authenticate-method the auto-login-method on successful login would set roles at identity and return true.
| That would spare me from configuring a page action for all pages. It would prevent the spurious "Please login. Welcome." messages. Also I would not need to pass user data in a field from the checkLogin method to the authentiocate method like I did above.
|
| What do you think?
|
I like this suggestion most. It's consistent with the JIRA issue I've mentioned earlier in the thread. I wish they would add support for this - I still don't have a working solution / even using your approach posted earlier - sigh....
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4089729#4089729
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4089729
More information about the jboss-user
mailing list