This is a known issue:
http://issues.apache.org/bugzilla/show_bug.cgi?id=17933
--- [EMAIL PROTECTED] wrote:
> Hi Kazuhito,
> I tried this modified FormAuthentication and it
> works when I run Weblogic
> Server with host name as "localhost".
> But if I use any other host name, it doesn't work,
> and reason being is
> domain name is set to "localhost" for other cookies,
> like cookies getting
> created from createHttpState() method of CookieUtil.
> I think BaseWebRequest also needs modification where
> domain name is
> hard-coded.:
> public void addCookie(String theName, String
> theValue)
> {
> addCookie("localhost", theName, theValue);
> }
>
> I will modify it and then try to run the code.
> Thanks,
> Ankur
>
>
> Please respond to "Cactus Users List"
> <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED]
> cc:
>
> Subject: Re: Form Authentication is not
> working in Weblogic Portal 7.0 SP4,need
> help
>
> Hi,
>
> In article
>
<[EMAIL PROTECTED]>,
> Thu, 19 Feb 2004 15:50:00 +0900 (JST),
> Kazuhito SUGURI <[EMAIL PROTECTED]>
> wrote:
> suguri.kazuhito> I'll propose a modified
> FormAuthentication soon.
>
> This is the one.
> I had modified FormAuthentication.java in
> cactus-src-1.5.
>
> Two sets of accessor has been added to the original:
> - void setExpectedPreAuthResponse(int) / int
> getExpectedPreAuthResponse()
> Set/get the expected HTTP response
> code for the request
> to the restricted resource without
> valid cookie.
> The default is 302
> (HttpURLConnection.HTTP_MOVED_TEMP).
> This is corresponding to the Step
> (2).
> - void setExpectedAuthResponse(int) / int
> getexpectedAuthResponse()
> Set/get the expected HTTP response
> code if the
> security_check
> is succeeded.
> The default is 302
> (HttpURLConnection.HTTP_MOVED_TEMP).
> This is corresponding to the Step
> (4).
>
>
> Ankur, would you try this?
>
>
> Regards,
> ----
> Kazuhito SUGURI
> mailto:[EMAIL PROTECTED]
>
>
> /*
> *
>
====================================================================
> *
> * The Apache Software License, Version 1.1
> *
> * Copyright (c) 2001-2003 The Apache Software
> Foundation. All rights
> * reserved.
> *
> * Redistribution and use in source and binary
> forms, with or without
> * modification, are permitted provided that the
> following conditions
> * are met:
> *
> * 1. Redistributions of source code must retain the
> above copyright
> * notice, this list of conditions and the
> following disclaimer.
> *
> * 2. Redistributions in binary form must reproduce
> the above copyright
> * notice, this list of conditions and the
> following disclaimer in
> * the documentation and/or other materials
> provided with the
> * distribution.
> *
> * 3. The end-user documentation included with the
> redistribution, if
> * any, must include the following
> acknowlegement:
> * "This product includes software developed
> by the
> * Apache Software Foundation
> (http://www.apache.org/)."
> * Alternately, this acknowlegement may appear in
> the software itself,
> * if and wherever such third-party
> acknowlegements normally appear.
> *
> * 4. The names "The Jakarta Project", "Cactus" and
> "Apache Software
> * Foundation" must not be used to endorse or
> promote products
> * derived from this software without prior
> written permission. For
> * written permission, please contact
> [EMAIL PROTECTED]
> *
> * 5. Products derived from this software may not be
> called "Apache"
> * nor may "Apache" appear in their names without
> prior written
> * permission of the Apache Group.
> *
> * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY
> EXPRESSED OR IMPLIED
> * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
> IMPLIED WARRANTIES
> * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
> PURPOSE ARE
> * DISCLAIMED. IN NO EVENT SHALL THE APACHE
> SOFTWARE FOUNDATION OR
> * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
> INDIRECT, INCIDENTAL,
> * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
> (INCLUDING, BUT NOT
> * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
> SERVICES; LOSS OF
> * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
> HOWEVER CAUSED AND
> * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
> STRICT LIABILITY,
> * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
> ARISING IN ANY WAY OUT
> * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
> THE POSSIBILITY OF
> * SUCH DAMAGE.
> *
>
====================================================================
> *
> * This software consists of voluntary contributions
> made by many
> * individuals on behalf of the Apache Software
> Foundation. For more
> * information on the Apache Software Foundation,
> please see
> * <http://www.apache.org/>.
> *
> */
> package org.apache.cactus.client.authentication;
>
> import java.net.HttpURLConnection;
> import java.net.MalformedURLException;
> import java.net.URL;
>
> import org.apache.cactus.Cookie;
> import org.apache.cactus.WebRequest;
> import
>
org.apache.cactus.client.connector.http.ConnectionHelper;
> import
>
org.apache.cactus.client.connector.http.ConnectionHelperFactory;
> import
> org.apache.cactus.configuration.Configuration;
> import
> org.apache.cactus.configuration.WebConfiguration;
> import
> org.apache.cactus.util.ChainedRuntimeException;
> import org.apache.commons.logging.Log;
> import org.apache.commons.logging.LogFactory;
>
> /**
> * Form-based authentication implementation. An
> instance of this class
> * can be reused across several tests as it caches
> the session cookie.
> * Thus the first time it is used to authenticate
> the user, it calls
> * the security URL (which is by default the context
> URL prepended by
> * "j_security_check"), caches the returned session
> cookie
=== message truncated ===
__________________________________
Do you Yahoo!?
Yahoo! Mail SpamGuard - Read only the mail you want.
http://antispam.yahoo.com/tools
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
