JSP + Tomcat:单点登录 [英] JSP+Tomcat: Single Sign-On

问题描述

如何使用Tomcat服务器为许多JSP应用程序创建单一登录的最佳方法?

How the best way to create a single sign-on for many JSP applications using Tomcat server?

推荐答案

一种可能性是使用在SSO机制中构建的Tomcat: http://tomcat.apache.org/tomcat-5.5-doc /config/host.html#Single_Sign_On

One possibility is to use Tomcats build in SSO mechanism: http://tomcat.apache.org/tomcat-5.5-doc/config/host.html#Single_Sign_On

CAS(中央身份验证服务)是一种更通用但仍易于使用的方法: http://www.jasig.org/cas 它也是开源的.

A more generic, but still easy to use approach is CAS (Central Authentication Service): http://www.jasig.org/cas It's also open source.

如果要在公司环境中执行集成Windows SSO，则Kerberos非常适合. (意味着，经过Microsoft Windows系统身份验证的用户会自动登录到以kerberized化的Web应用程序中).对于许多其他用例来说，它根本不合适.

Kerberos is the perfect fit if you want to do Integrated Windows SSO within a corporate environment. (Means, user authenticated to a Microsoft Windows system are automatically logged in to kerberized web applications). For a lot of other use cases it doesn't fit at all.

关于Web应用程序的SSO，没有通用的最佳方法"，但也许是最适合您的特定要求的方法.也许您可以更详细地解释它们?

There is no general "best way" when it comes to SSO for web applications, but maybe one that fits best for your specific requirements. Maybe you can explaing them in a bit more detail?

btw为什么您还在使用Tomcat 5.5?

btw why the heck are you still using Tomcat 5.5?

这篇关于JSP + Tomcat:单点登录的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！