This is a known issue: http://issues.apache.org/bugzilla/show_bug.cgi?id=17933
--- [EMAIL PROTECTED] wrote: > Hi Kazuhito, > I tried this modified FormAuthentication and it > works when I run Weblogic > Server with host name as "localhost". > But if I use any other host name, it doesn't work, > and reason being is > domain name is set to "localhost" for other cookies, > like cookies getting > created from createHttpState() method of CookieUtil. > I think BaseWebRequest also needs modification where > domain name is > hard-coded.: > public void addCookie(String theName, String > theValue) > { > addCookie("localhost", theName, theValue); > } > > I will modify it and then try to run the code. > Thanks, > Ankur > > > Please respond to "Cactus Users List" > <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > cc: > > Subject: Re: Form Authentication is not > working in Weblogic Portal 7.0 SP4,need > help > > Hi, > > In article > <[EMAIL PROTECTED]>, > Thu, 19 Feb 2004 15:50:00 +0900 (JST), > Kazuhito SUGURI <[EMAIL PROTECTED]> > wrote: > suguri.kazuhito> I'll propose a modified > FormAuthentication soon. > > This is the one. > I had modified FormAuthentication.java in > cactus-src-1.5. > > Two sets of accessor has been added to the original: > - void setExpectedPreAuthResponse(int) / int > getExpectedPreAuthResponse() > Set/get the expected HTTP response > code for the request > to the restricted resource without > valid cookie. > The default is 302 > (HttpURLConnection.HTTP_MOVED_TEMP). > This is corresponding to the Step > (2). > - void setExpectedAuthResponse(int) / int > getexpectedAuthResponse() > Set/get the expected HTTP response > code if the > security_check > is succeeded. > The default is 302 > (HttpURLConnection.HTTP_MOVED_TEMP). > This is corresponding to the Step > (4). > > > Ankur, would you try this? > > > Regards, > ---- > Kazuhito SUGURI > mailto:[EMAIL PROTECTED] > > > /* > * > ==================================================================== > * > * The Apache Software License, Version 1.1 > * > * Copyright (c) 2001-2003 The Apache Software > Foundation. All rights > * reserved. > * > * Redistribution and use in source and binary > forms, with or without > * modification, are permitted provided that the > following conditions > * are met: > * > * 1. Redistributions of source code must retain the > above copyright > * notice, this list of conditions and the > following disclaimer. > * > * 2. Redistributions in binary form must reproduce > the above copyright > * notice, this list of conditions and the > following disclaimer in > * the documentation and/or other materials > provided with the > * distribution. > * > * 3. The end-user documentation included with the > redistribution, if > * any, must include the following > acknowlegement: > * "This product includes software developed > by the > * Apache Software Foundation > (http://www.apache.org/)." > * Alternately, this acknowlegement may appear in > the software itself, > * if and wherever such third-party > acknowlegements normally appear. > * > * 4. The names "The Jakarta Project", "Cactus" and > "Apache Software > * Foundation" must not be used to endorse or > promote products > * derived from this software without prior > written permission. For > * written permission, please contact > [EMAIL PROTECTED] > * > * 5. Products derived from this software may not be > called "Apache" > * nor may "Apache" appear in their names without > prior written > * permission of the Apache Group. > * > * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY > EXPRESSED OR IMPLIED > * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE > IMPLIED WARRANTIES > * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR > PURPOSE ARE > * DISCLAIMED. IN NO EVENT SHALL THE APACHE > SOFTWARE FOUNDATION OR > * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, > INDIRECT, INCIDENTAL, > * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES > (INCLUDING, BUT NOT > * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR > SERVICES; LOSS OF > * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) > HOWEVER CAUSED AND > * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, > STRICT LIABILITY, > * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) > ARISING IN ANY WAY OUT > * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF > THE POSSIBILITY OF > * SUCH DAMAGE. > * > ==================================================================== > * > * This software consists of voluntary contributions > made by many > * individuals on behalf of the Apache Software > Foundation. For more > * information on the Apache Software Foundation, > please see > * <http://www.apache.org/>. > * > */ > package org.apache.cactus.client.authentication; > > import java.net.HttpURLConnection; > import java.net.MalformedURLException; > import java.net.URL; > > import org.apache.cactus.Cookie; > import org.apache.cactus.WebRequest; > import > org.apache.cactus.client.connector.http.ConnectionHelper; > import > org.apache.cactus.client.connector.http.ConnectionHelperFactory; > import > org.apache.cactus.configuration.Configuration; > import > org.apache.cactus.configuration.WebConfiguration; > import > org.apache.cactus.util.ChainedRuntimeException; > import org.apache.commons.logging.Log; > import org.apache.commons.logging.LogFactory; > > /** > * Form-based authentication implementation. An > instance of this class > * can be reused across several tests as it caches > the session cookie. > * Thus the first time it is used to authenticate > the user, it calls > * the security URL (which is by default the context > URL prepended by > * "j_security_check"), caches the returned session > cookie === message truncated === __________________________________ Do you Yahoo!? Yahoo! Mail SpamGuard - Read only the mail you want. http://antispam.yahoo.com/tools --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]