Business Process Server provides the BPM Sign-on API servlet, which provides a single sign-on capability to other portals that are configured to work with BPM Sign-on API. In Business Process Server, BPM Sign-on API enables users to log into the Home module of Business Process Portal, and then open other modules in Business Process Portal to which they have been granted access, without having to log in again. With BPM Sign-on API, you do not have to log in to each configured module separately.
The BPM Sign-on API servlet uses the user name and password information from the Login page to create a session and redirects the user to his/her Home page. Subsequent references to all the modules of Business Process Portal pass through the BPM Sign-on API servlet, which first verifies if the user session is valid and then redirects the user to the selected module or feature.
Note: If BPM Sign-on API finds a session invalid (for example, due to time-out), then the user is redirected to the Login page to log in again by entering the user name and password.
