Java: Can a desktop App log-in in a web app and retrieve a “session” object to authenticate itseft in other apps which trust the web app?
Question
I don't know if this question has any sense, but this is what my boss want.
I work in a company with an intranet web.
In my department we have developed an application wich connects to a Bussiness Object server and executes and prints reports. This is a regular client/server app with our own user/password manintenance to log in.
My boss want to remove our password maintenance and let the users log in using the intranet password, somehow the desktop app connect the intranet (i don't know if it has a web service, but probabilly yes), makes the log in and retrieves some kind of object the Bussiness Object can use to authenticate.
Can this be done? I know the BO can use LDAP authentication if its well configured, so that if i can verify the intranet password and redirect the same password to BO it can autenticate the user by itself.
2 answers
solution1
0 ACCPTED 2009-10-26 20:21:50
The closest I have seen/created is to use the shared secret (ITrustedPrincipal) mechanism to authenticate the user against secEnterprise without knowing the true password of the user. The only gotcha with this log in model is that the Universe Connection needs to not use the Business Objects credentials for connecting to the database.
The alternate is LDAP can be used and is fairly easy to set up as an authentication method for logging into Business Objects and auto adding users. The only caveat is that LDAP groups need to be correctly such that the Business Objects groups that the LDAP groups associate to are set up correctly.
solution2
0 2009-10-26 20:33:12
可能您必须查看某种“单一登录一个”(sso),看看是否1)您的服务器可以处理,2)您的客户端可以实现它。
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.