Announcement Announcement Module
Collapse
No announcement yet.
Spring security with SSO Page Title Module
Move Remove Collapse
This topic is closed
X
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Spring security with SSO

    I have an application developed in JDK1.4 and not using any Spring modules.
    I want to use Spring security and Single sign on.

    Is it possible to add Spring security module to a non-spring applications and what is the version i need to use for JDK1.4.

    Does spring security provides single sign on?

    regards
    Maha

  • #2
    what do you mean by SSO? there are a lot of different definitions of that term out there.

    do you mean a type of silent authentication where the user is not challenged with a username/password form? Rather, the authentication is handled in the background so it's transparent to the user...

    or do you mean that you have multiple applications running on one or more servers and you want users to sign in to a login form only once for all of them?

    SSO is sometimes used to describe both of those scenarios.

    Comment


    • #3
      Thanks for your reply. It will be like muliple application running on multiple servers. User need not get the login form to login into all the application (The second one).

      Comment


      • #4
        Hello jb_mahadevan,

        You can use spring-security on any Java application, doesn't matter if you already use spring or not.

        Spring Security 3.0 isn't compatible with Java 4, but you can use the 2.0.5 version without problems.

        I personally implemented SSO using Atlassian CROWD, if you haven't already an SSO solution inside your company I recommand you to take a look at it !

        I've posted a whole description of the configuration in my blog, you can find the entry here:
        http://aloiscochard.blogspot.com/200...h-ntlm_19.html

        (I used NTLM to achieve 1st scenario, but you can use spring-security with Crowd without using the NTLM authentication... and you got scenario 2 )

        Good luck !

        Alois Cochard
        http://aloiscochard.blogspot.com
        http://www.twitter.com/aloiscochard

        Comment


        • #5
          Alois... I was trying to implement ntlm auth with our domain controller but without any success. Problem was with HandshakeException or with issues where first user was authenticated ok but every next failed. strange for me.

          After few weeks of fight with spring and jcifs, I've decided to try with jespa library and... it works great. Result of my work is here: http://code.google.com/p/jespa-spring/

          Comment


          • #6
            Originally posted by plissken View Post
            Alois... I was trying to implement ntlm auth with our domain controller but without any success. Problem was with HandshakeException or with issues where first user was authenticated ok but every next failed. strange for me.

            After few weeks of fight with spring and jcifs, I've decided to try with jespa library and... it works great. Result of my work is here: http://code.google.com/p/jespa-spring/
            Good job dude !

            Since I haven't same problem I don't wanna change, but that's really good to know ! And can perhaps correct issue cometta is experimenting :-)

            BTW, I strongly recommend everyone to try Kerberos authentication, use only NTLM if you can't use something else.

            Regards,

            Alois Cochard
            http://aloiscochard.blogspot.com
            http://www.twitter.com/aloiscochard

            Comment


            • #7
              Originally posted by alois.cochard View Post
              BTW, I strongly recommend everyone to try Kerberos authentication, use only NTLM if you can't use something else.
              That's true !!

              Comment

              Working...
              X