5.5.2 Application of single sign-on to existing application user management
The conditions listed in the following table must be met to apply integrated user management single sign-on when the existing application has already performed user management.
|
Presence of LoginModule |
Condition 1 |
Condition 2 |
Applicability |
Method |
|---|---|---|---|---|
|
Yes |
Can be modified. |
n/a |
O |
Use sharedState to pass authentication information. |
|
Cannot be modified. |
Authentication information can be passed by using sharedState. |
O |
Modify jaas.conf (the JAAS configuration file) for the single sign-on library. |
|
|
Authentication information cannot be passed by using sharedState. |
X |
n/a |
||
|
No |
The login API is available. |
n/a |
O |
Create a login module. |
|
The login API is not available. |
n/a |
X |
n/a |
Legend:
O: Can be applied
X: Cannot be applied
n/a: Not applicable
Among the Cosminexus standard login modules, WebPasswordLoginModule, WebCertificateLoginModule, WebPasswordLDAPLoginModule, and WebPasswordJDBCLoginModule (login modules that authenticate users) support single sign-on.