Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Won't Do
-
Trunk
-
None
-
None
Description
OFBiz is made up of several web applications.
To allow the user to sign in only once, a unique token value is presented for verification each time the user navigates to an unvisited web application.
This approach has the following limitations:
1) You cannot work with multiple windows, as there is only 1 valid token value at any time and other token values will be invalid in older-opened windows.
2) There is a need to refresh the whole page, so that all links will contain the valid token value.
3) Not easy to compose a page that get contents from different web applications in OFBiz
Adding CAS SSO component as a core into OFBiz will remove the limitations mentioned above.
Attachments
Issue Links
- depends upon
-
OFBIZ-9168 Replace JUEL with up-to-date EL Spec 3.0 implementation
- Closed
- is related to
-
OFBIZ-10047 Tomcat SSO
- Reopened