Authentication and Single Sign
Authentication and Single Sign
Authentication and Single Sign
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
JAAS <strong>Authentication</strong><br />
J2EE<br />
Browser<br />
Window<br />
External<br />
security product<br />
(optional)<br />
External<br />
security product<br />
JAAS uses login modules for authentication<br />
• Login modules get user information via callbacks<br />
• SAP proprietary h<strong>and</strong>lers can be used to gather additional information:<br />
HttpGetterCallback – used to obtain information from the request (header/cookies)<br />
HttpSetterCallback – used to attach information to the response<br />
• St<strong>and</strong>ard information available is only User/Passphrase, all other information<br />
requires a Callback<br />
© SAP AG 2005, <strong>Authentication</strong> <strong>and</strong> <strong>Single</strong> <strong>Sign</strong> On / Patrick Hildenbr<strong>and</strong> / 33