I discovered WAFFLE two days ago. Our company is going to include SSO login in our web applications. I am responsible for implementing that function and WAFFLE seems to be the best one of offered solutions. I am new to AD authentication, so I would
like to ask you some questions @dblock:
1) Where exactly should I specify the name of users' group that I would like to authorize? For example, I am logged in local domain 'mydomain' and I would like to authenticate users belonging only to this group and no one else. For others I want to display
login form (with username and password prompt). I tried to do it in <role-name> tags but it did not work (when I set another role name, instead of Everyone, I was still able to login).
2) After succesful authorization, I would like to make a session for authorized username and redirect him or her to next steps. In your example I added an servlet and I was being authorized correctly but when I was trying to call that servlet in URL (http://localhost:8080/my_app/my_servlet) I
got 403 ERROR
3) Where can I find more detailed documentation? My Project Manager ordered me to describe him how WAFFLE works. I will be very grateful if you could tell me wether you have some class diagrams, or data flow scheme.