Article:		Tomcat and OpenLDAP, from Configuration to Application
Subject:		different approach
Date:		2005-07-06 13:09:06
From:		mentata
Thanks for the article. This could someday be very useful for me. I always love to see the growth of this space: I've been using Tomcat and OpenLDAP together for years! However, I rely on my open source LDAP/container framework which enables SSO authentication at the level of an application context. My container is never identity aware but the application always is, which I has advantages especially when the app's actions are directed at directory data. With something like mod_ldap, others do auth at the web server level. Just think, you could potentially make your users authenticate (to the same directory) three times to get access to your functionality. I bet then they would feel sooo secure :)