Home/ Questions/Q 6882377
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-27T05:14:44+00:00

I have a situation as below: I have 2 web applications running on Tomcat.

  • 0

I have a situation as below:

I have 2 web applications running on Tomcat. Initially User gets logged in to the Application 1 and then. There is a link to the Application 2. On Clicking the link User should be redirected to second application.

Both applications using LDAP authentication.

Now, the problem here is second application has its own Authentication system.

So, We are planning to implicitly authenticate the user which is logged in the first system.

I have written a servlet, which gets executed when I click on link for App2 in the App1.

I am trying to use below code which should call Servlet “ldap-login” on app2 with given parameters.Parameter names are correct.

String targetURL = "http://localhost:8080/app2/ldap-login";

    HttpClient client = new HttpClient();

    PostMethod doPost = new PostMethod(targetURL);

    //doPost.getParams().setBooleanParameter(HttpMethodParams.USE_EXPECT_CONTINUE, true);
    doPost.addParameter("login_netid", "alice");
    doPost.addParameter("login_password", "alice");
    try {
        int status = client.executeMethod(doPost);
        if (status == HttpStatus.SC_OK) {
             // redirect
            response.sendRedirect("http://localhost:8080/app2/myPage");
        } else {
            System.out.println("Service failed, Response Code= " +                  
                HttpStatus.getStatusText(status));  
            System.out.println("Response Body --> " + doPost.getResponseBodyAsString());
        }
     } catch (Exception ex) {
         System.out.println("ERROR: " + 
         ex.getClass().getName() + " "+ ex.getMessage());
         ex.printStackTrace();
      } finally {
                doPost.releaseConnection();
      }

But I am getting Response “Moved temporarily”.

Can anyone suggest me any alternate ?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    A 302 Moved Temporarily response is just a redirect. It’s exactly the kind of response which you would get when you do response.sendRedirect(). You can also very good get a redirect as a response to a successful login. I suggest to verify on the second application if it isn’t indeed redirecting when the login is successful. You should then check if the response code is 302 instead of 200. Or, alternatively, you need to tell HttpClient to follow any redirects automatically.

    Even more, if the login actually failed, what kind of response would you get from the second application? Would it throw an exception and thus return a response code of 500? Or would it just conditionally set some error message in the request scope and redisplay the JSP by a forward and thus keep a response code of 200? How would you then distinguish a 200 on a failed login from a 200 on a successful login?

    Unrelated to the concrete problem, your approach will likely not work if the second application does not share the same session as the first application. A login is usually stored in the session, but you’re not maintaining the session anywhere. Anyway, that’s subject for a new question 🙂

    • 0