There are a number of things to consider, like security. Using the same credentials across many applications is not a good idea. More details on the project would help us provide a better response. You could always store the initial login in a cookie and use that to access the inner app if it too requires a login. The question is if the inner app is accessible outside of the main one. You would have to condition a secondary login to display if the cookie had no login credentials.