servlet filter authentication
I have a web application and it has a login module. once user logs into this application, he is authorized to view 3 more applications running on different servers,
once the user logsin into the main app he is provided with the links to other 3 applications.
and if he tries to access the other 3 apps through those urls, i am planing to do some kind of authentication in the servlet filter.
Can any one tell me a best way to do that, i have to pass username and role of the user, for additional security , so that one cannot mimik the process, what else i can pass???