----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
Hello all,
How can I authenticate a user to both a servlet web application (Jserv)
AND to Apache (1.3.9 running on NT) but only require that the user log
in once?
Here's the situation:
Like most websites, we have a "members only" area that only registered
members can access. So I have implemented a "log-in servlet" that drops
a cookie onto the client upon a successful login. Any servlet first
checks for that cookie before serving up any "members only" content.
This strategy works well for dynamically generated pages... but I also
want to serve up some pages that are 100% static (e.g. FAQ's, help
pages, legal babble, etc). Since these pages are 100% static, using
Apache + SSI is ideal... but I can't figure out how to authenticate the
user to Apache without forcing the user to log-in again (but this time
to Apache).
Can this be done? I can get servlet/cookie authentication to work, and
I can get Apache authentication to work as well... but it seems like
there's no way to share authentication information between the two.
I've already looked at several Apache modules for authentication
(mod_access, mod_auth & mod_auth_db), but none of them seem to provide
the desired functionality.
Any ideas?
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Search Archives:
<http://www.mail-archive.com/java-apache-users%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
