Single Sign On - Jetty HashSSORealm
There are very many single sign on technologies available, but on this page we discuss a very simple implementation provided in the standard distro, the HashSSORealm.
The HashSSORealm permits a user to authenticate with one web application, and then have that authentication and authorization shared by other web applications deployed in the same instance.
The key is to configure a single instance of the HashSSORealm for all web applications that wish to share authentication and authorization information, and then plug that instance into each UserRealm configured for each web application.
Here's the definition of a HashSSORealm instance:
Now, if we have web applications A and B, we would plug the instance we defined above into the configurations for both: