pigpants
03-18-2009, 10:02 AM
Hello all, I'm a little confused and was hoping someone could help me.
When you set up realm based authentication in Tomcat (6), say I have protected 5 pages in my site all under the same realm, when someone clicks on one they get forwarded to a log in page, they log in and get taken to the page they require. When they click on another restrcited page, do they get access (presuming their role is sufficent) via cookies or url rewritten session id's, of do they have to authenticate again?
In all the tomcat resorces it describes sessions, and authentication, but not how to link them! Any help would be very much appreciated!
When you set up realm based authentication in Tomcat (6), say I have protected 5 pages in my site all under the same realm, when someone clicks on one they get forwarded to a log in page, they log in and get taken to the page they require. When they click on another restrcited page, do they get access (presuming their role is sufficent) via cookies or url rewritten session id's, of do they have to authenticate again?
In all the tomcat resorces it describes sessions, and authentication, but not how to link them! Any help would be very much appreciated!