single signon + spring [closed]

Answer 1

If you're looking for an out of the box solution Cloudseal could be a good option as it includes single sign on, user management and two factor authentication. There is a dedicated Spring client available for the platform

N.B. I work for Cloudseal so I'm biased!

Answer 2

You can use CAS (Central Authentication Service)

http://www.jasig.org/cas

Answer 3

You might also want to consider Kerberos. Below is a detailed Javadoc on the same --

http://download.oracle.com/javase/1.4.2/docs/guide/security/jgss/single-signon.html

Answer 4

What you need is spring-security.

It supports both OpenID and CAS out of the box, but you'll need to do some research on your own on those.

If you need just basic SSO functionality I can recommend just implementing your own UsernamePasswordAuthenticationFilter and/or AbstractPreAuthenticatedProcessingFilter and using cookies. This answer will help you do that.

You also should have a look at the spring-security docs and then ask a more specific question if you need to.