Most of the times we are irritated typing those long userids and passwords for different webApps. There is a solution to this problem. We can group these webApps and implement single sign on to ensure the user once logged in can access all those webApps without requiring to log in again. One such solution framework is JOSSO( Java Open Single Sign-On) which provides set of components and libraries to implement SSO for your WebApps. JOSSO provides mainly two components which are responsible for Session creation, Session maintenance, user authentication and many such services.
JOSSO comprises three main components:
SSO Gateway (IdP): It's the SSO server, also known as Identity Provider, responsible of acting as a the web access management authority for SSO-
enabled applications and their users.
SSO Agent: Handles the single sign-on use-cases and execution environment integration details for SSO-enabled applications. Agents consume Gateway identity services.
Partner application (SP): SSO-enabled web application, also known as Service Provider, that relies on the SSO Agent and Gateway components for providing the Single Sign-On experience to users.