We used to be able to login to multiple sites by using iframes to set cookies on each site after a successful login (plus a secure shared token to validate the request).
