Sharing sessions/Single login
There are several web applications, running on the same server. How can sessions be shared across the whole server, or, in other words, how should I implement single login for multiple appilcations on the same server ?
I would recommend using a cookie to store the login state, as well as some sort of checksum so people can't manufacture their own cookies. The cookies are site-specific, not virtual server specific, so as long as all your web apps are from www.yoursite.com, the cookie for www.yoursite.com will be accessible from all of the different web apps.
You can xor an arbitrary number, along with the time and date to get a login that expires after a certain amount of time - just extract the "encoded" date from the cookie, and figure out how long it's been since the person last logged in.
I did a similar setup with my own application. I had an apache server and IIS on the same machine, and one login for both web apps.
Good luck!
David
Similar Messages
-
Sharing a single session among multiple portlets for single application (e.g. wInsight)
Does anyone know the best practices way for sharing a single Session for an application (running on a single Porlet server) among multiple portlets on a page?
For example, the application wInsight uses 3 frames (navigation, search results - tabular, search results - chart) which need to communicate via the application's session scope. It is not just that we do not want for a single user to be running multiple sessions, but they really do share variable parameters this way.
So far I can only think of trying to build a one true portlet and two empty containers on page load. I would use the portlet to establish the session with the Portlet server and then transfer the session information to the other two empty containers to instantiate their respective portlets. I haven't tried this yet, but will do so soon...
Any help and feedback would be greatly appreciated.Karen,
You can easiliy create several portlets out of a Struts application. For detailed instructions, refer to the Struts section of the Portal Developer's Guide.
Good luck,
Peter -
please tell me about single login and how to do single login through JSP
yes elaborate
and if what u mean is for a user to b able to login once per session just like yahoo chat does ..as in when u log in anywhere u cant login in another place without loggin out the logged in session
then its simple when u login set a flag in d database profile of d person logged in to "on"(column) ..
when another wants to log in the login method should always check the flag column for the status of that person and if the status is "on" it should tell the second login(er) that he is logged in else where.
pkere!!. -
Screen Sharing and Remote Login suddenly stopped working
I have had Screen Sharing and Remote Login turned on on my iMac for several weeks and they have been working fine up until now. I have been accessing the computer via VNC programs and command-line ssh logins from other computers on the same local network. When I tried to connect today, i was given the following error message.
ssh: connect to host xxx.xxx.xxx.xxx port 22: No route to host
I have all of the required settings turned on in System preferences and there are no firewalls or router settings blocking it. I connected the two computers together via ethernet cable and the error message still occurred.
I can ssh from the machine to 127.0.0.1, so the ssh server is running. I can ssh to other locations from the laptop i am attempting to connect with, so that's not the problem either. I just spent an hour on the phone with the apple tech support line and they couldn't figure anything out either. Can anybody figure something out?have you tried the obvious - restarting the computers involved and the router?
-
Hello
we need a session-store (maintaining state) which is shared between several WebDynpros.
The WebDynpros are embedded into the Portal as iViews, any hint how to get such a shared session-store?
Thanks! KaiThank you very much for your ongoing effort, Anton.
Neither
Component Interfaces -> SharedContextIface -> Interface Controller
nor
Components -> SharedContextComp -> Local Component Interface -> Interface Controller
have any option to set required controllers. Only "normal" Component Controllers do have the "Required Controllers" Table under Tab Properties.
Anyone here having experience with EHP1?
Thanks! -
On new session after login procedure and :APP_USER
Hi,
I need to get some info using :APP_USER on a new session after login procedure but it's always null:
I'm referencing it this way:
my_var := :APP_USER;
Any help is wecome
For the forum moderator, I got some problems, could you please close 2 of my repeating treads. Thanks
Message was edited by:
Rafael MHi Scott,
I am facing the same problem. I have created one application process with process condition On New Session: After Authentication. In this application process i am checking for :app_user in particular table, if the person does not exist i am inserting a record in to the table. But every time :app_user is having null value with On New Session: After Authentication process condition. It is working fine for remaining process conditions.
Thanks in advance for your help
Regards
Ram. -
Network Adminssion Control, 802.1x & Novell Clients to have a single login.
Hi Sir,
My customer would like to have OTP, if NAC and 802.1x come into picture. At the moment, they are running Novell client for Windows version 4.9SP2 authenticating to Novell LDAP server.
How can NAC and 802.1x be integrated into one time password (OTP)? If not what is the alternative best solution can we propose to them ?With NAC Phase 1, which uses IOS Routers as the NAD, the Trust Verification occurs using EAP over UDP. User credentials are not part of the items passed by the CTA to the policy server. So however you log into the machine will be your authentication experience.
With NAC Phase 2, which uses L2 switches as the NAD, the Trust Verification is planned to use EAP over 802.1x. The user will be authenticated and authorized by the switch by way of the ACS AAA server. The 802.1x supplicant that you use will dictate whether or not a single login occurs. Choices for supplicants include the embedded supplicant Microsoft offers and supplicants from 3rd parties, such as Funk.
So you do not have to wait for NAC Phase 2 to take advantage of NAC today. While planning for NAC Phase 2, it would be a good idea to plan out your 802.1x strategy & even implement 802.1x to make sure it is ready to layer the NAC Trust Verification on top of it.
Please let us know if you have any follow-up questions.
thanks
peter
ps - pls rate these posts so we know if we have provided you with an answer that helps! -
Safari Sharing Session Info With Air
Hi Guys,
I'm having issues with safari sharing session information
with my air application. What i'm doing is using a URLLoader to
send a URLRequest to a web server. When I send the request in my
app, AIR is applying its own header vars to the request. When i try
to prevent this by setting URLRequest.manageCookies to false, I
lose some of the custom header variables that are sent by the
server in the response. Is there any way of preventing air from
cookie sharing and still retrieve all the header variables
including cusom vars?This crash seems to be caused by a bug in iCloud. The only workaround that I know of at the moment is to disable Safari synchronization in the iCloud preference pane. Sync bookmarks with iOS devices in iTunes instead. You may also need to do as follows.
Back up all data.
Triple-click the text on the line below to the clipboard, then copy it to the Clipboard (command-C):
~/Library/Safari/Bookmarks.plist
Quit Safari.
Select
Go ▹ Go to Folder
from the Finder menu bar. Paste into the text box that opens (command-V), then press return.
A folder window should open with a file named "Bookmarks.plist" selected. Move the selected file to the Desktop, leaving the folder open.
Relaunch Safari. It will open with the default set of bookmarks. Delete them all. Select
File ▹ Import Bookmarks
from the Safari menu bar. Import from the bookmarks file you moved to the Desktop. Arrange the bookmarks as you wish.
If Safari now performs normally, you can delete the old bookmarks file. Otherwise, quit Safari again and put back the file you moved, replacing the newer one with the same name. Close the Finder window and post again. -
Single login for multiple domains
Can anyone point out a blog or post of a single login for
multiple domains? For example, let's say I own asite.com and
bsite.com.
I want a user who logins to asite.com to also be logged into
bsite.com if they visit that site. BSite.com is clearly a microsite
of asite.com but we'd like to continue to use that domain if the
visitor is on that site instead of redirecting them to keep login
credentials
ThanksIf you're using cookie based login system, I'd imagine you
could set a cookie to be valid for both of your sites.
<cfcookie name="myAuthcookie" value="myAuthValue"
domain=".asite.com;.bsite.com">
That way both asite.com and bsite.com can read your cookie.
Note the notation; always include the preceeding dot in the domain
values. (two dots for top level domains, etc.)
Strangely CFCOOKIE documentation doesn't mention anything
about using semicolon separating multiple domains. It did in CF5
documentation, but not since. -
Session backing beans and multiple navigator windows sharing session
Hi let's suppose i have a web and page1, page2 and page3 that should share the backingbean. Normal navigation goes from page 1 to page 2 to page 3.
I do not want a backing bean per page because i need to share data between my pages. The immediate solution is to put this bean in session context and use it in each page. But this has severe drawbacks:
- The backing bean is the same each time I access any page, and I want a new bb to be used each time the user requests for page 1
- When a user has more than one navigator window sharing session, and on each window he is navigating through pages 1 to 3, there can be a big mess because he is accessing to the same bb from both windows.
So I would like to find a solution that permit the user to navigate from both windows as if the windows had its own session.
Any hint?
ThnxI have a similar problem as described .
I hava one window with enterable fields and when you click on a button it opens another window .Both forms are backed by the same bean .since both forms are nearly the same .
The bean is a managed bean in request scope .
when I fill in the first window with values and click on the link it opens the second but the first windows elements and now empty .
Even though it is in Request scope when the second window is being loaded the bean is re-initialized . I would expect a new intance of this bean to be created for the second window .
This is how I am calling the second window .
<h:commandButton id="newRequestItem" action="#{requestItem.createNewRequestItem}" rendered="#{createActivationRequest.displayCreateLinks}" onclick="openNewPage('NewRequestItem.jsp');"
image="images/show_all.gif" title="new request">
<h:outputText value="new request" styleClass="toolbar-command"></h:outputText>
</h:commandButton>
function openNewPage(url)
aqcbwin= window.open(url, "newRequestItem","toolbar=no, scrollbars=1");
aqcbwin.moveTo(50, 50);
target="_new";
//target="_blank";
aqcbwin.focus();
any ideas to what is wrong and how I can correct this .
Thanks for your help .
Mark -
Two Solution Engines Sharing a single, common Self Signed Cert
Does anyone know if it possible to have 2 solution Engines sharing a single, common self signed certificate generated by one of the Solution Engines? I have a certificate, actually two, that are about to expire. I am trying simplify the distribution and management by having just one certificate.
This is the process to share SSL certs:
http://forums.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Security&topic=AAA&topicID=.ee6e1fe&fromOutline=&CommCmd=MB%3Fcmd%3Ddisplay_location%26location%3D.2cc0c933
But why do you want to do this anyway? They are self-signed certs anyway, you can generate them for as long as you like. Are you using it for some sort of end-user security like Wireless Encryption, NAC etc.?
Regards
Farrukh -
JBoss cluster shared session not working always
Hi all,
I am using JBoss AS 4.0 for my Application, recently we need to scale the application, so we added another JBoss AS 4.0 in cluster. It is working fine with sticky session.
But we need to share the session state so we made the changes in JBoss service .xml and the Appache for shared session, as described in the Jboss administration documentation, but the session shareing is not working always, some time it is working, suddenly the session in the clustered server gone out,
please advice me what if i am missing, i cannot figure out
thanks in advanceHello. I actually raised a support request to Microsoft about this. It seems from my testing that when using user profile disks in 2012 r2 that shared activation doesn't work. Last update this was with engineering team at MS. Will update when they have
confirmed this is an actual bug. -
Sharing a single FTP session in BPEL.
Hi All,
I have a BPEL process which uses a FTP Adapter, we pool FTP server (OFO) to read files every 60 sec.(pooling frequency), so every time before pooling to read a file, it required to log in and once it reads the file it logs out. The number of login and logout are huge so there a concern at server. so *Is there any way where I can log in once and keep the FTP session alive and at the end of the day log out after the work done.
Note: I tried setting up 'pooling frequency parameters for the get file operation' in "Adapter Configuration Wizard" with 4 hours but still this will not help us because we do not know when the files will be available in xyz directory structure of FTP server(i.e. we need to pick the files as soon as it received in the xyz directory structure of FTP server)
Appreciate your help!
Thanks --RajuI have tried ftp connection pools ? but it did work. is there any other solution for this?
-
How to create a single login for multiple apps on tomcat server?
Hello,
I am running the most recent versions of apache and tomcat on several dells with XP pro.
When I login to an app I have created, a session variable is set, but when I browse to one of the other apps on the same computer, it does not recognize that the session variable has been set and I have to login again.
Can somebody please suggest how, or where I can find docs, to configure tomcat to pass the session variables to other apps?
Thank you very much.
Or, can anybody suggest the most effective strategy for creating single-logon functionality for multiple apps with tomcat and apache running on one computer? and with tomcat and apache running on multiple computers? (i.e., each computer has tomcat and apache integrated).
The database is Oracle 10g running on each computer.
Thank you again.A good place to start is http://www.javaworld.com/javaworld/javatips/jw-javatip34.html
Also, do a search in this forum on HttpURLConnection. That class allows you to use POST method to send form data to a web server.
"Hidden" variables are only hidden in HTML. The HTTP that gets POSTed to the web server doesn't distinguish between hidden and not hidden. That is, the content you would write to the HttpURLConnection.getOutputStream() would be something like:
hidden=1&submit=ok(Of course, the variable names would depend on what the web server was expecting from the form.)
Also, be sure to set the Content-Type request parameter to "application/x-www-form-urlencoded" -
Save cookie/session after login on web service client
I am calling a web service that has a login method. It sets a session id in
a cookie. Every subsequent call fails and says I'm not logged in. How do I
save their cookie or session ID such that the server thinks I'm logged in?
Here's the client code (I used clientgen to create jar from wsdl);
DatashareManager dsm = new DatashareManager_Impl();
WebServiceContext wsContext = dsm.context();
WebServiceSession session = (WebServiceSession)wsContext.getSession();
DatashareManagerSoap dsmsoap = dsm.getDatashareManagerSoap();
String result = dsmsoap.login("username", "password"); // this works
EResult result2 = dsmsoap.deleteReusableList(1, "bob"); // this fails 'Not
logged in'That sounds like a difficult one to implement because you'll essentially need to intercept the AppsLogin servlet (or AppsLocalLogin.jsp) to conditionally redirect the user somewhere else - and that would be an intrusive (and not recommended) customization.
Some possible alternatives:
1. Rather than publish http://hrlive.myintranet.local:8000/OA_HTML/AppsLogin as the URL that you users connect to, publish something like http://hrlive.myintranet.local:8000/OA_HTML/XxLogin.jsp instead. That could be a custom JSP that asks the user to agree to the disclaimer and, when they agree, store that agreement in a cookie and then redirect to AppsLogin.
That's not quite the same because you're asking the user to agree before they login. It also means that they can navigate direct to AppsLogin and bypass the disclaimer (unless you customize AppsLogin to verify the cookie).
2. Assign all users a default 'Disclaimer' responsibility with a single function (such as an EIT, or a custom OA Framework page) that allows the user to agree to agree to the disclaimer. Then once they've agreed to it have some process that automatically grants them their real responsibilities and revokes the Disclaimer responsibility. For example, if you used an EIT that could be an API User Hook.
One problem with this approach is that you'll need to clear cache through Functional Administrator before the new responsibilities are visible so you'll either need to find a way of doing that programatically or ask the user to wait until tomorrow (assuming you do a nightly web server bounce).
Maybe you are looking for
-
Excise duty Amount Roundig off, In invoice verification.
Dear Experts, Please guide me on Excise duty Amount rounding off in MIRO.
-
2007 MacBook Pro Screen becomes distorted and Computer becomes unresponsive
Hi, I am wondering if anyone else has experienced this. This is hard to explain with words alone, but I will try: I'll be using my 2007 MacBook Pro with no problems, when all of a sudden the screen will start to flicker and the display will become di
-
JSP XML file parsing XSLT using Xalan
Hi all I have created an XML file "view_campaign.xml" using JSP as shown in a code below and i wanna know how i should proceed to parse the XML file and so i can display this XML as the XSLT file i created. <%@ page import="java.sql.*" %> <%@ page im
-
JNDIMapper Problem (Foreign JMS Providers with WebLogic Server does not close connection )
Hello All, We tried to use wlsmqseries.zip classes (specially JNDI Mapper) for integrating WebLogic Server with MQ so that we can incorporate XA transactions. We use LDAP context factory to bind MQ. W
-
Its urgent.!!!!!!BAPI for Production Order
HIi All , i need to fecth Storage Bin/Material/Quantyti/Descrition . All values can be obtained from the production order record using the BAPI. which BAPI is there for this req?