在几个Web应用程序之间共享安全上下文 [英] Sharing security context between few web applications

问题描述

我需要具有实际上由几个独立的战争组成的Web应用程序，并将其统一到UI上的同一导航栏中，我需要保护所有系统，但仅对主Web应用程序进行身份验证，并在将此安全性上下文自动传播到子Web后进行身份验证应用程序.我正在使用Spring Security，有人可以为我提供建议吗?谢谢

I need to have web application which actually consist from few separate wars unified into same navigration bar on UI, i need to have all system secured but have authentication only to main web application and after automatic propagation of this security context to sub web applications. I'm using spring security, could someone help me with advice? thanks

推荐答案

Spring Security将登录数据存储在http会话中.因此，我想尝试的是在应用程序之间共享会话.

Spring Security stores the login data in the http session. So what I would try is to share the session between the applications.

通过使用单曲演唱" 属性.

但是要警告，在两个应用程序之间共享会话并非没有危险.请参阅此堆栈溢出问题.

But be warned, sharing the session between two applications is not without danger. See this Stack Overflow question.

这篇关于在几个Web应用程序之间共享安全上下文的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！