How can we implement SSO over multiple servers ?
I am using a custom login module (JAAS) that authenticates a user against a database (or any other service for that matter).
With the result returned from the service I populate Principal and Roles. So far so good.
However, this security context is not propagated to other servers nor is the JSessionid cookie attached to other domains than the originator. So, how can we accomplish this ?