IDC资讯中心
what is josso?
josso, or java open single sign-on, is an open source j2ee-based sso infrastructure aimed to provide a solution for centralized platform neutral user authentication.
pluggable framework
the pluggable framework allows to implement and combine multiple authentication schemes with credential stores.
an authentication scheme is a security mechanisms used to verify user identity based on his credentials. sample authentication schemes are username/password authentication or certificate based authentication.
credential stores are repositories for user credentials to be used during the user authentication transaction
you could configure josso to use for example certificate-based authentication scheme obtaining user x.509 certificates from a database using jdbc.
multi-platform single sign-on
josso uses web services for asserting user identity, allowing the integration of non-java applications (i.e: php, microsoft asp, etc.) to the single sign-on service using the soap over http protocol.
reverse proxy support
josso comes with a reverse proxy component that can be used to create n-tier single sign-on configurations.
standard based
josso security infrastructure is based on jaas (java authentication and authorization service)
josso uses web services implementing axis as the distributed infrastructure.
josso uses struts and jsp standards
