Currently Traditional web apps and react apps use different sessions which means there is no single sign on available if you have mixed applications in your environment. Because there is no easy way to convert a traditional web app to react this makes things difficult to migrate to react for those of us that have a lot of legacy applications written in traditional web.
If it was possible to at least share the login session between the two this would allow us to incrementally upgrade our applications over to react without having to hack the security sessions be passing tokens between apps of different types which can result in some unwanted security issues (ie user logs out in one and is still logged into another etc)
We have looked at dong a virtual session by storing details in the database, passing tokens and validating on every web request which can work but means we are duplicating a lot of the inbuilt security concepts and missing one of the big benefits of OS which is a really good built in security model.
Hi Jeanene,
Although reactive apps are session-less, login in particular can be shared. From version 11.8 onward you can enable Single Sign-On Between App Types in Service Center.
Cheers,Tiago Simões
Ah well that answers our problem, we are still on 11.0.614. Thanks for that update.
Given the answer from Tiago Simões and the reply from Jeanene, I think this cam be marked as "Implemented" (already)
Changed the category to Frontend and the status to
Hi Daniël,
You are right, l’m marking this one as implemented.
Cheers,
Tiago Simões
I was also looking for this option and finally found it. Thanks for implementing!
Regards,
-PJ-