How to maintain the Single Sign-On?.
Posted on 2006-06-07
We have 3 applications EmployerWeb, SalesWeb and CustomerWeb and all are running on WebSphere application server6.0
We would like to maintain the Single Sign-on for all applications.
The current system generating one token when logged in to the system and which is a having encrypted UID and PWD.
The home page will display the hyper links which user have the access.
<a href="SalesWeb/Login.do?ticket=rereryuu43235235"> Sales </a>
<a href="CustomerWeb/Login.do?ticket=rereryuu43235235"> Customers </a>
based on the ticket value the respective application is getting the UID/PWD and again login to the system.
I am not happy with this solution. It is creating two sessions one at employerWeb application and other when they click on the link.
How to make it more meaningful