This filter would be responsible to force OpenAM-based authentication for web application.
In the absence (or invalidity) of the iPlanetDirectoryPro header/cookie, it should redirect the User-Agent on the appropriate OpenAM Login page. Otherwise, the request is passed to the next filter in chain.
- Use Cookie and/or header ?
- Realm support
- No token provided -> request redirected
- Token out-lived -> request redirected
- QA tests