You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@struts.apache.org by Vardan <vp...@saigun.com> on 2007/05/22 14:57:03 UTC

how to read login info

Dear All ,
                Can we have windows Login credentials like user name or 
domain name,to make my application single signon.
Scenario
1.User login into Windows and hit http://abc:8080/product
2.The request comes to logOn action,so at this point is it possible to 
fetch user domain name or login user name

Thanks
Vardan

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org

Re: how to read login info

Posted by Jeromy Evans <je...@blueskyminds.com.au>.

If you simply want to open a personalised page when they return to 
http://abc:8080/product, just save a cookie the first time they login so 
you know who they are the next time they come back.

If you genuinely want to authenticate the user using their windows login 
credentials:
On the server-side you can authenticate the user against an LDAP server 
or Active Directory so that you don't have to store/duplicate their 
credentials in your database. You'd need to read up on JAAS - a good 
resource is http://www.jaasbook.com/.  It's not trivial, but essentially 
you just need to create a javax.security.auth.login.LoginContext with 
the right parameters to access the LDAP/Active Directory server. 

This still however requires the credentials to be passed from the client 
to your server.

On the client-side, hopefully there's no way to obtain the user's login 
credentials from the local machine and post them automatically to your 
server.  You can however store their credentials in a cookie after the 
first time they've logged in to allow automatic logins or just allow 
them to save them in the browser if they choose to.  Forcing the users 
to store their domain credentials in a cookie is generally a bad idea 
though.

I think there's an ActiveX solution for true single sign-on, but I 
suspect that's not what you're actually after.

Vardan wrote:
> Dear All ,
>                Can we have windows Login credentials like user name or 
> domain name,to make my application single signon.
> Scenario
> 1.User login into Windows and hit http://abc:8080/product
> 2.The request comes to logOn action,so at this point is it possible to 
> fetch user domain name or login user name
>
> Thanks
> Vardan
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
> For additional commands, e-mail: user-help@struts.apache.org
>
>
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@struts.apache.org
For additional commands, e-mail: user-help@struts.apache.org