we are currently piloting a solution where IS is protected by an access control product (entrust getAccess). We would like to avoid having the user authenticate twice (both to getAccess and then to WebMethods).
For that a possible solution would be to develop a custom authentication module that will read the session information from the HTTP header and check with getAccess to see if the user is authorized for the resource.
so my question is how can I access the HTTP header from the ModuleFactory class in the Authentication module?
any ideas or sample code?
thanks in advance