跨子域的Tomcat SSO [英] Tomcat SSO across subdomains

问题描述

我有一个 tomcat 服务器，服务于多个 Web 应用程序.他们利用 tomcat SSO 无缝登录用户.但是，如果应用程序具有不同的子域，这似乎不起作用.

I have a tomcat server serving multiple web applications. They leverage tomcat SSO to seamlessly login the user. However, this does not seem to work if the applications have different sub domains.

有没有办法让 tomcat SSO 跨驻留在同一服务器上但在不同子域下提供服务的应用程序工作.

Is there a way to get tomcat SSO to work across applications residing on same server but served under different sub domains.

谢谢

推荐答案

尝试在单点登录 Valve 上设置 cookieDomain 属性(请参阅 http://tomcat.apache.org/tomcat-7.0-doc/config/valve.html#Single_Sign_On_Valve) 到公共根域，看看这是否有效:如果您尝试单点登录 a.example.com 和 b.example.com，请尝试设置 SSO cookie到 example.com 或 .example.com.

Try setting the cookieDomain attribute on the single signon Valve (see http://tomcat.apache.org/tomcat-7.0-doc/config/valve.html#Single_Sign_On_Valve) to the common root domain and see if this works: if you're trying to single sign on to a.example.com and b.example.com try setting the SSO cookie to example.com or .example.com.

这篇关于跨子域的Tomcat SSO的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！