I'm trying to integrate an application to an AD server.
What i'm looking for is adding security to this integration.
I want to the user for login the first time and get the application to recognize it later, much like SSO.
I can't use any SSO framework because they rely on tickets (e.g. CAS), and I need to be able to access the user and passwords due to an external CMS Platform API.
What's the best way to do this?
Use JNDI to access the AD server and JAAS to prompt the user for login and then encrypt the user data on a database and access it when I need to?
Encrypt the user data on a data structure? Like a map?
Edited by: Nuno Miguel Santos on 18/Mai/2012 4:31