My customer would like to serve portal content without forcing the user to log in. I understand that you can serve anonymous content through the EP. My question is:
- If a user has previously logged in to the portal at some time in the past (and then they closed the browser, went home for the night, etc), is it possible to serve personalized content to them without having to log in? The example I would like to emulate is that of Amazon.com. Amazon places a persisten cookie on my computer so that whenever I go back to Amazon.com I see "Jack's Store". The only time I have to login again is when I want to do something that requires security such as "checking out". The problem is that our portal allows for single sign on to other applications. So, while it's perfectly acceptable for someone to browse to our portal and see things like project news (personalized) - I still want them to have to authenticate if they click on the single sign-on links if they haven't given their password in the last hour. Is this possible?
first, welcome on SDN!
About your question: Generally, this is possible. You would have to implement the persistent cookies and the whole functionality by your own, there is no standard support for this within EP, but that's just Java developing.
And to restrict access to the content you have to logged in for, you will have to set the authentication scheme appropriate, ie not to anonymous.
The last question you will have to decide is how the user is forced to log in. If you just offer links within DetNav with AuthScheme set to default, clicking on this will open the login screen at the place where the iView is expected. If that's OK for you - nothing to do in addition. If not, get a clear picture of what behaviour you would expect (and probably you will have to lay hands on code to achieve your aim...).
Hope it helps
PS: Pleas consider rewarding points on SDN if an answer is helpful. Thanks in advance!