Browse Prior Art Database

Servlet/Applet/HTML Authentication Process with Single Sign-On

IP.com Disclosure Number: IPCOM000013676D
Original Publication Date: 2000-Jan-01
Included in the Prior Art Database: 2003-Jun-18

Publishing Venue

IBM

Abstract

A process is disclosed that makes it possible for Java* Servlets to log in to the IBM** SecureWay** On-Demand Server Version 2 (ODS) with a web browser as the user interface. It is relatively straightforward to authenticate a user with ODS when the authentication is only needed within one Java Virtual Machine* (JVM). Examples of programs in one JVM are the ODS Applet Launcher desktop and the Applets it launches, or the Servlets running in one application server. The ODS Single Sign-On (SSO) cookies provide authentication for secure Servlets and other programs that want to share their authentication with ODS, so the user does not have to log in twice. However, running authenticated Applets from a Servlet-generated HTML desktop is more difficult. This is because Applets currently do not recognize the SSO cookie in the web browser, so they will request a second login unless the user is already logged in to their JVM. In addition, administrators should be able to configure the amount and types of security mechanisms used. Figure Overview of the Authentication Process: Use Java Login? Y