Research And Implemention Of Single Sign-On Based On Java Web Applications

As IT systems proliferate, more and more application systems were built to support business processes. Because of the independence from those applications, users and system administrators are faced with an increasingly complicated interface to accomplish their job functions. Users typically have to sign-on to multiple systems, necessitating an equivalent number of sign-on dialogues, each of which may involve different usernames and authentication information.Single sign on is a mechanism that allows a user to provide his or her credentials once in order to access multiple applications. The single sign on authenticates the user to access all the applications he or she has been authorized to access. It eliminates future authentication requests when the user switches applications during that particular mechanism.Web Single sign on works strictly with applications accessed with a web browser. The request to access a web resource is intercepted either by a component in the web server, or by the application itself. Unauthenticated users are diverted to an authentication service and returned only after a successful authentication.In the paper, we designed a single sign on model based on Java Web application. It can solve the problem of security context's transfer in different systems through building the third service. At the same time, we built a uniform system to management the user's personal information and Authorization. While building the single sign on system, we thought about the relation in the web applications and used the J2EE structure to develop the system and made a simple interface to add follow web application to the whole system.The deployment of the SSO brings more benefits to an enterprise through:Reduction in the time taken by users in sign-on operations to individual domains, including reducing the possibility of such sign-on operations failing. Improved security through the reduced need for a user to handle and remember multiple sets of authentication information. Deliveries a secure and smooth service when integrate multiple applications.