About Adding Single Sign-on Authentication in Application Platform Projects
Application Platform enables you to set up security configurations to your servlet-based web applications. Depending on your project and requirements, you can use the available security filter, class, or annotation in your
Application Platform projects. The class and the annotation are available in the
Application Platform API Libraries classpath container. For more information about the
Application Platform API Libraries container, see
Configuring the
Application Platform API
Libraries Container.
You can enable SSO authentication and authorization in your Application Platform projects by adding SSO:
To the web application layer of an
Application Platform web project by using the standard Java EE approach of configuring a security filter in the web.xml file, which is the deployment descriptor of your project. With the security filter you can add a SSO functionality to your web applications.
To the OSGi service layer of an
Application Platform Java or web project. You can implement SSO to OSGi services that are:
Exposed as
Integration Server (IS) services and invoked through HTTP(S) calls.
Exposed as POJO OSGi services.
Invoked from the
Application Platform web layer. This layer consists of web applications that run on Tomcat and are deployed to
Integration Server via HTTP(S).
Invoked from the Composite Application Framework (CAF) web layer. This layer consists of web applications that run on Jetty and are deployed to
My webMethods Server via HTTP(S).
For detailed information about the security filter, class, and annotation you can use for adding SSO, see Getting Started with the webMethods Application Platform API.